PHP Object Injection revisted

A session at CONFidence 2013

  • Arseny Reutov

Tuesday 28th May, 2013

3:50pm to 4:40pm (WMT)

The topic will cover new attack vectors regarding unserialiazation of user-supplied data due to vulnerabilities in PHP’s builtin classes. Universal XSS, local file read, open_basedir bypass, examples of vulnerable web applications including demo attack on latest vBulletin, Smarty and others.

About the speaker

This person is speaking at this event.
Arseny Reutov

Sign in to add slides, notes or videos to this session

CONFidence 2013

Poland Poland, Krakow

28th29th May 2013

Tell your friends!


Time 3:50pm4:40pm WMT

Date Tue 28th May 2013

Short URL


Official session page


View the schedule


See something wrong?

Report an issue with this session