SSRF

Research Posts (1)

• Jul 17, 2021

  FILTER_VALIDATE_URL bypass in PHP 8

  Reported a bypass of FILTER_VALIDATE_URL filter in PHP 8 that can lead to SSRF by escaping the URL validations in any PHP target which depend on FILTER_VALIDATE_URL.