From ec445110d639ebce7df1733be8e043dec4ceb90e Mon Sep 17 00:00:00 2001 From: "@cnagy" <3061769+c-nagy@users.noreply.github.com> Date: Sun, 25 Oct 2020 19:19:44 +0000 Subject: [PATCH] Added a brief overview for type juggling --- Type Juggling/README.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/Type Juggling/README.md b/Type Juggling/README.md index 7ceaf0b..488332c 100644 --- a/Type Juggling/README.md +++ b/Type Juggling/README.md @@ -5,6 +5,8 @@ PHP provides two ways to compare two variables: - Loose comparison using `== or !=` : both variables have "the same value". - Strict comparison using `=== or !==` : both variables have "the same type and the same value". +PHP type juggling vulnerabilities arise when loose comparison (== or !=) is employed instead of strict comparison (=== or !==) in an area where the attacker can control one of the variables being compared. This vulnerability can result in the application returning an unintended answer to the true or false statement, and can lead to severe authorization and/or authentication bugs. + ## Type Juggling ### True statements @@ -101,4 +103,4 @@ var_dump(sha1('aaO8zKZF') == sha1('aa3OFF9m')); * [Writing Exploits For Exotic Bug Classes: PHP Type Juggling By Tyler Borland](http://turbochaos.blogspot.com/2013/08/exploiting-exotic-bugs-php-type-juggling.html) * [Magic Hashes - WhieHatSec](https://www.whitehatsec.com/blog/magic-hashes/) -* [PHP Magic Tricks: Type Juggling](https://owasp.org/www-pdf-archive/PHPMagicTricks-TypeJuggling.pdf) \ No newline at end of file +* [PHP Magic Tricks: Type Juggling](https://owasp.org/www-pdf-archive/PHPMagicTricks-TypeJuggling.pdf)