git.m6w6.name Git - m6w6/ext-http/blob - tests/bug73055.phpt

   1 --TEST--
   2 Bug #73055 (Type confusion vulnerability in merge_param())
   3 --SKIPIF--
   4 <?php
   5 include "skipif.inc";
   6 ?>
   7 --FILE--
   8 <?php
   9
  10 echo "Test\n";
  11
  12 try {
  13         echo new http\QueryString("[[[[[[[[[[[[[[[[[[[[[[[[[[[]]]][[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[&%C0[]E[=&2[&%C0[]E[16706[*[");
  14 } catch (Exception $e) {
  15         echo $e;
  16 }
  17 ?>
  18
  19 ===DONE===
  20 --EXPECTF--
  21 Test
  22 %r(exception ')?%rhttp\Exception\BadQueryStringException%r(' with message '|: )%rhttp\QueryString::__construct(): Max input nesting level of %d exceeded%r'?%r in %sbug73055.php:%d
  23 Stack trace:
  24 #0 %sbug73055.php(%d): http\QueryString->__construct('[[[[[[[[[[[[[[[...')
  25 #1 {main}
  26 ===DONE===