#questionsonphp risultati di ricerca
Did you know PHP 8.5 adds a new FILTER_THROW_ON_FAILURE option for the `filter_var` function? If the `filter_var` validation fails, it will trigger an exception to be thrown 🔥
#bugbountytips #bugbounty #cybersecurity #Pentesting #Hacking #bugcrowd #Hackerone #IDOR #XSS #SQLI Blind #RCE When you find a file upload center inside any site You will definitely look for RCE because it is considered the most important and dangerous security vulnerability…
idk what is doing this in my cursor but it is a beautiful illustration of different PHP versions
@Fortinet hey can you fix your web filter lookup tool? Everytime I do a lookup it says invalid parameters. It's never been quite right since the addition of the captcha. Thanks!
I get this weird CC issue, and I do not even have any image added to the prompt... like wtf? "API Error: 400 {"type":"error","error":{"type":"invalid_request_error","message":"Could not process image"},"request_id":"req_011CUbWmD5hx2RKJ2fyHQsmU"}" anyone else having this issue?
「filter」プロパティを使用し画像にフィルターを追加してみました。 他にもhue-rotate(色相)やinvert(階調)の調整も可能です。 #Web制作 #プログラミング初心者 #駆け出しエンジニアと繋がりたい #webデザイン #css
"Can you just send me the non edited pictures? I want to put my own filter on them" Me; i WAaNt To PuUt MyY oWn FiLlTeR oN tHeEm"
ป๊าดนี่แหละที่ตามหา❕❕เป็นฟิลเตอร์ที่สามารถเอารูปจากแกลอรี่มาใส่ได้ แล้วสีฟิลเตอร์จะไปอยู่ในรูป ﹆⚬🏠🛵🚦
#BugBounty #BugBountyTips #XSS If the program replace all user input in the tag (ex: <h1>,<script>,etc.) into blank you can add "Line Feed (%0a)" before closing tag for bypass (ex: <script%0a>,</h1%0a>) ex: <?php echo "You say " . preg_replace("/<(.*?)>/", "", $_GET['x']); ?>
![Bayufedraa's tweet image. #BugBounty #BugBountyTips #XSS
If the program replace all user input in the tag (ex: &lt;h1&gt;,&lt;script&gt;,etc.) into blank you can add "Line Feed (%0a)" before closing tag for bypass (ex: &lt;script%0a&gt;,&lt;/h1%0a&gt;)
ex:
&lt;?php
echo "You say " . preg_replace("/&lt;(.*?)&gt;/", "", $_GET['x']);
?&gt;](https://pbs.twimg.com/media/ERxN9ruUwAAY8zU.png)
![Bayufedraa's tweet image. #BugBounty #BugBountyTips #XSS
If the program replace all user input in the tag (ex: &lt;h1&gt;,&lt;script&gt;,etc.) into blank you can add "Line Feed (%0a)" before closing tag for bypass (ex: &lt;script%0a&gt;,&lt;/h1%0a&gt;)
ex:
&lt;?php
echo "You say " . preg_replace("/&lt;(.*?)&gt;/", "", $_GET['x']);
?&gt;](https://pbs.twimg.com/media/ERxNljVUcAUe6n6.png)
![Bayufedraa's tweet image. #BugBounty #BugBountyTips #XSS
If the program replace all user input in the tag (ex: &lt;h1&gt;,&lt;script&gt;,etc.) into blank you can add "Line Feed (%0a)" before closing tag for bypass (ex: &lt;script%0a&gt;,&lt;/h1%0a&gt;)
ex:
&lt;?php
echo "You say " . preg_replace("/&lt;(.*?)&gt;/", "", $_GET['x']);
?&gt;](https://pbs.twimg.com/media/ERxN5UzU4AIi-of.jpg)
when you came up with a file= parameter before trying for other rfi see phpinfo page is accessible or not you might get some juicy information. e.g.file=data:text/plain, <?php phpinfo(); ?> #bugbountytip
1/8 What does it mean to filter an image (or signal)? Often we choose, or design, a set of weights and apply them to the input image. But what loss/objective function does this process optimize (if any)? Should we care?
PHP deserialization techniques DRUPAL 1-CLICK TO RCE EXPLOIT CHAIN DETAILED /sites/default/files/pictures/<YYYY-MM>/_0 instead of: /sites/default/files/pictures/<YYYY-MM>/profile_pic.gif. [Demo] youtu.be/GT5LCO7D3SE zerodayinitiative.com/blog/2019/4/11…
Here are some filter templates that you see a bunch of people using. I found them last night. You can use the apps PicsArt or phonto and just put them over your pictures.
Another day another bug 🤘 This time we got a file upload bypass: Blacklisting PHP extensions + requires file name with jpeg/png/jpg ext. So by uploading .htaccess file with null byte at the end we can bypass it and upload every ext as php! #BugBounty #bugbountytips #infosec
PHP drops any header if it finds nullbyte value in the header. If user controls input in header, they can chose to drop the header. This works on PHP since 2015 but will be fixed on next version. #BugBounty Solution for my CTF: %00<img src=x onerror=alert(1337)>
Something went wrong.
Something went wrong.
United States Trends
- 1. Cheney 137K posts
- 2. Election Day 130K posts
- 3. Jakobi Meyers 4,659 posts
- 4. Mamdani 569K posts
- 5. #csm219 3,677 posts
- 6. Logan Wilson 8,519 posts
- 7. New Jersey 205K posts
- 8. Cuomo 280K posts
- 9. Iraq 56.3K posts
- 10. Shota 17.5K posts
- 11. GO VOTE 100K posts
- 12. #TheView N/A
- 13. #Election2025 3,124 posts
- 14. Waddle 6,129 posts
- 15. #tuesdayvibe 2,667 posts
- 16. New Yorkers 84K posts
- 17. New York City 173K posts
- 18. Rickey 1,872 posts
- 19. GOOD MORNING MINTO N/A
- 20. Rolex 17.7K posts