mirror of
https://github.com/php/php-src.git
synced 2024-09-22 02:17:32 +00:00
23 lines
431 B
PHP
23 lines
431 B
PHP
--TEST--
|
|
Bug #72681: PHP Session Data Injection Vulnerability
|
|
--SKIPIF--
|
|
<?php include('skipif.inc'); ?>
|
|
--FILE--
|
|
<?php
|
|
ini_set('session.serialize_handler', 'php');
|
|
session_start();
|
|
$GLOBALS['ryat'] = $_SESSION;
|
|
$_SESSION['ryat'] = 'ryat|O:8:"stdClass":0:{}';
|
|
session_write_close();
|
|
session_start();
|
|
var_dump($ryat);
|
|
var_dump($_SESSION);
|
|
?>
|
|
--EXPECT--
|
|
array(0) {
|
|
}
|
|
array(1) {
|
|
["ryat"]=>
|
|
string(24) "ryat|O:8:"stdClass":0:{}"
|
|
}
|