Skip to content

Instantly share code, notes, and snippets.

@xavierleune

xavierleune/mysqli_driver.php

Created January 24, 2018 17:47
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save xavierleune/8cde9fc97ea7136d425a1d63cbb974fb to your computer and use it in GitHub Desktop.
Save xavierleune/8cde9fc97ea7136d425a1d63cbb974fb to your computer and use it in GitHub Desktop.
Download ZIP
Lack of isolation on mysqli_driver->report_mode
Raw
mysqli_driver.php
<?php
$tainted = new \mysqli_driver();
$original = new \mysqli_driver();
var_dump($tainted->report_mode, $original->report_mode);
// $tainted: int(0)
// $original int(0)
$tainted->report_mode = 2;
var_dump($tainted->report_mode, $original->report_mode);
// $tainted int(2)
// $tainted int(2)
// Both values have been changed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment