“How we broke PHP, hacked Pornhub and earned $20,000”

Home » Security » “How we broke PHP, hacked Pornhub and earned $20,000”

This is a very interesting read on how Dario Weißer (@haxonaut), cutz and Ruslan Habalov (@evonide) were able to find a PHP unserialize bug to exploit and gain remote code execution on Pornhub. Pornhub’s bug bounty program is at Hackerone. In stead of actively attacking Pornhub, they took another road and attacked what Pornhub is built upon: PHP.

Read on at evonide.com: How we broke PHP, hacked Pornhub and earned $20,000.

Tags
Sharing is caring <3
Jan Reilink
Jan Reilink

In my day to day work, I’m a systems administrator – DevOps / SRE and applications manager at Embrace – The Human Cloud. At Embrace we develop, maintain and host social intranets for our clients. Provide digital services and make working more efficient within various sectors.

Articles: 149

Leave a Reply

Your email address will not be published. Required fields are marked *


Trending now

a rusted iron gate with a chain hanging from it
Test SMTP authentication and StartTLS
Microsoft SQL Server logo
Fix broken WMI provider in SQL Server
Bash logo
Check IP address blacklist status in Bash
Microsoft Deployment Workbench: silent installation of various applications