New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ErrorException: unserialize(): /phpunit/Util/PHP/AbstractPhpProcess.php:247 - processIsolation="true" / print HTML / exit() #3165
Comments
This issue has been automatically marked as stale because it has not had activity within the last 60 days. It will be closed after 7 days if no further activity occurs. Thank you for your contributions. |
@Stale, go away pls error happen to multiple ppl, this is not first report, we have all the details now. having crash of unserializing into abstract class is not nice for sure |
@keradus I do not understand why it is not safe. You mean this: https://www.notsosecure.com/remote-code-execution-via-php-unserialize/ |
sorry, i don't got your msg. what is not safe? i didn't said that anything here is safe or not, |
Hi @keradus -> Check the line where it crash: The security is enough? or the second parameter must be applied to the unserialize() function:
|
sorry, but i don't see how the crash error log is related to unserialize with or without allowed_classes. |
This issue has been automatically marked as stale because it has not had activity within the last 60 days. It will be closed after 7 days if no further activity occurs. Thank you for your contributions. |
This issue has been automatically closed because it has not had activity since it was marked as stale. Thank you for your contributions. |
Hi, I share my test.
Versions:
phpunit.xml - processIsolation="true"
Test code:
Code that I want to test:
I notice that if you have a exit() statement in the code that print the html this cause an error.
ERROR:
The text was updated successfully, but these errors were encountered: