The Startup
Published in

The Startup

Exploiting PHP deserialization

Intro to PHP object injection vulnerabilities

PHP: Hypertext Preprocessor | Logo by Colin Viebrock on

Serialization is when an object in a programming language (say, a Java or PHP object) is converted into a format that can be stored or transferred. Whereas deserialization refers to the opposite: it’s when the serialized object is read from a file or the network and converted back into an object.




Get smarter at building your thing. Follow to join The Startup’s +8 million monthly readers & +756K followers.

Recommended from Medium

Needed Capabilities - IOT

Make your website run in https using Certbot

How to make a windows installer run silently

How to commit existing changes to a new git branch

What’s is XmasBook ? Version 2021

The “Knowledge Sharing” Problem

How to Deploy The Laravel APP on AWS EC2

Getting Started with Google Colab

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Vickie Li

Vickie Li

Professional investigator of nerdy stuff. Hacks and secures. Creates god awful infographics.

More from Medium

Laravel 8 Toastr Notifications Example

Laravel Enum

Laravel user roles and permissions

Build Web App Sosmed with Laravel 8 [Part 1]