all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PHP — Type Juggling

Add to bookmarks
Jan. 17, 2023, 8:02 p.m. | SickAndTired

System Weakness - Medium systemweakness.com

PHP — Type Juggling

Type Juggling it’s a kind of bug that occurs only on PHP, mainly due to the way the language “compares” one thing to another.

In PHP there’re a pair of operators that, although look similar, they do perform different tasks, those are == and ===.

Double equals essentially evaluate if the variable, or whatever being compared, is empty or not. We can see that on the first condition, which “verifies” if $txt is really empty or …

bug code review ctf cybersecurity hacking language pentest php txt variable

Visit resource

More from systemweakness.com / System Weakness - Medium

IDOR Attacks Demystified: How They Work and How to Prevent Them 3 days, 11 hours ago | systemweakness.com
attacks business compromise confidentiality +13
How does Single Sign-on (SSO) interact with Active Directory (AD) and Outlook? 3 days, 11 hours ago | systemweakness.com
access active directory applications authentication +15
OSI Model & TCP/IP Comparison 3 days, 11 hours ago | systemweakness.com
access communication deals frameworks +14
First AD home lab 4 days, 7 hours ago | systemweakness.com
access active directory building can +17
3 Steps to protect yourself from Prompt Injection 4 days, 7 hours ago | systemweakness.com
prompt-engineering prompt injection security
Clocky | TryHackMe Write-up 5 days, 6 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 5 days, 6 hours ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 5 days, 6 hours ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 5 days, 6 hours ago | systemweakness.com
anonymous beginner communication cybersecurity +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Principal - Cyber Risk and Assurance - Infra/Network

@ GSK | Bengaluru Luxor North Tower
View on infosec-jobs.com

Staff Security Engineer

@ Airwallex | AU - Melbourne
View on infosec-jobs.com

Chief Information Security Officer

@ Australian Payments Plus | Sydney, New South Wales, Australia
View on infosec-jobs.com

TW Test Automation Engineer (Access Control & Intrusion Systems)

@ Bosch Group | Taipei, Taiwan
View on infosec-jobs.com

Consultant infrastructure sécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com
View more jobs