“How we broke PHP, hacked Pornhub and earned $20,000”

Photo of author
Written By Jan Reilink

Windows Server systems administrator & enthusiast.

This is a very interesting read on how Dario Weißer (@haxonaut), cutz and Ruslan Habalov (@evonide) were able to find a PHP unserialize bug to exploit and gain remote code execution on Pornhub. Pornhub’s bug bounty program is at Hackerone. Instead of actively attacking Pornhub, they took another road and attacked what Pornhub is built upon: PHP.

Read on at evonide.com: How we broke PHP, hacked Pornhub and earned $20,000.


Did you like: “How we broke PHP, hacked Pornhub and earned $20,000”

Then please, take a second to support Sysadmins of the North and donate!

Your generosity helps pay for the ongoing costs associated with running this website like coffee, hosting services, library mirrors, domain renewals, time for article research, and coffee, just to name a few.



Hi! Join the discussion, leave a reply!