PHP FrameworkLaravelA brief analysis of the latest SQL injection vulnerability in PHP framework LaravelA brief analysis of the latest SQL injection vulnerability in PHP framework Laravel
Laravel, the well-known PHP development framework, previously reported a high-risk SQL injection vulnerability on the official blog. Here is a brief analysis.
First of all, this vulnerability belongs to the irregular coding of the website. The official gave a hint:
But the official still did it It has been patched and can be fixed by upgrading to the latest version V5.8.7.
Let’s first locate here:
Illuminate\Validation\Rule
The officially recommended writing method is:
Rule::unique('users')->ignore($id),
If the website coding does not process the value of $id in advance, the user can pass it directly Giving malicious data to the ignore function will cause SQL injection.
Let’s follow the function:
\Illuminate\Validation\Rules\Unique.php class Unique {
... public function ignore($id, $idColumn = null) { if ($id instanceof Model) { return $this->ignoreModel($id, $idColumn);
} $this->ignore = $id; $this->idColumn = $idColumn ?? 'id'; return $this;
}Here we do not consider writing $id as an instance. If $id is user-controllable, $idColumn can be written directly as empty, and finally assigned The situation is as follows:
$this->ignore = $id; $this->idColumn = 'id';
If the website code is structured like this, the value entered by the hacker is controllable:
$id = $request->input('id');
Finally we will get here:
Illuminate\Validation\Rules\Unique.php public function __toString() {
...
...
}We Take a look at the key code changes:
Illuminate\Validation\Rules\Unique.php
V5.8.7【最新版】 public function __toString() { $this->ignore ? '"'.addslashes($this->ignore).'"' : 'NULL',
}
Illuminate\Validation\Rules\Unique.php
V5.8.4 public function __toString() { $this->ignore ? '"'.$this->ignore.'"' : 'NULL',
}The latest code here is v5.8.7, which directly gives $this->ignore to addslashes. There was no protection here before.
What’s interesting is that the author compared the diffs, during which the official also tried to filter other quoted places. Finally, unified filtering was performed at __toString.
Finally, the following code will enter DatabaseRule for subsequent SQL rule matching.
Illuminate\Validation\Rules\DatabaseRule.php
There was no further processing after this, and then SQL injection was formed.
For more Laravel related technical articles, please visit the Laravel Framework Getting Started Tutorial column to learn!
The above is the detailed content of A brief analysis of the latest SQL injection vulnerability in PHP framework Laravel. For more information, please follow other related articles on the PHP Chinese website!
Last Laravel version: Migration TutorialMay 14, 2025 am 12:17 AMWhat new features and best practices does Laravel's migration system offer in the latest version? 1. Added nullableMorphs() for polymorphic relationships. 2. The after() method is introduced to specify the column order. 3. Emphasize handling of foreign key constraints to avoid orphaned records. 4. It is recommended to optimize performance, such as adding indexes appropriately. 5. Advocate the idempotence of migration and the use of descriptive names.
What is the Latest LTS Version of Laravel?May 14, 2025 am 12:14 AMLaravel10,releasedinFebruary2023,isthelatestLTSversion,supportedforthreeyears.ItrequiresPHP8.1 ,enhancesLaravelPennantforfeatureflags,improveserrorhandling,refinesdocumentation,andoptimizesperformance,particularlyinEloquentORM.
Stay Updated: The Newest Features in the Latest Laravel VersionMay 14, 2025 am 12:10 AMLaravel's latest version introduces multiple new features: 1. LaravelPennant is used to manage function flags, allowing new features to be released in stages; 2. LaravelReverb simplifies the implementation of real-time functions, such as real-time comments; 3. LaravelVite accelerates the front-end construction process; 4. The new model factory system enhances the creation of test data; 5. Improves the error handling mechanism and provides more flexible error page customization options.
Implementing Soft Delete in Laravel: A Step-by-Step TutorialMay 14, 2025 am 12:02 AMSoftleteinelelavelisling -Memptry-braceChortsDevetus -TeedeecetovedinglyDeveledTeecetteecedelave
Current Laravel Version: Check the Latest Release and UpdatesMay 14, 2025 am 12:01 AMLaravel10.xisthecurrentversion,offeringnewfeatureslikeenumsupportinEloquentmodelsandimprovedroutemodelbindingwithenums.Theseupdatesenhancecodereadabilityandsecurity,butrequirecarefulplanningandincrementalimplementationforasuccessfulupgrade.
How to Use Laravel Migrations: A Step-by-Step TutorialMay 13, 2025 am 12:15 AMLaravelmigrationsstreamlinedatabasemanagementbyallowingschemachangestobedefinedinPHPcode,whichcanbeversion-controlledandshared.Here'showtousethem:1)Createmigrationclassestodefineoperationslikecreatingormodifyingtables.2)Usethe'phpartisanmigrate'comma
Finding the Latest Laravel Version: A Quick and Easy GuideMay 13, 2025 am 12:13 AMTo find the latest version of Laravel, you can visit the official website laravel.com and click the "Docs" button in the upper right corner, or use the Composer command "composershowlaravel/framework|grepversions". Staying updated can help improve project security and performance, but the impact on existing projects needs to be considered.
Staying Updated with Laravel: Benefits of Using the Latest VersionMay 13, 2025 am 12:08 AMYoushouldupdatetothelatestLaravelversionforperformanceimprovements,enhancedsecurity,newfeatures,bettercommunitysupport,andlong-termmaintenance.1)Performance:Laravel9'sEloquentORMoptimizationsenhanceapplicationspeed.2)Security:Laravel8introducedbetter
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
MinGW - Minimalist GNU for Windows
This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.
SublimeText3 Chinese version
Chinese version, very easy to use
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software
Zend Studio 13.0.1
Powerful PHP integrated development environment
PhpStorm Mac version
The latest (2018.2.1) professional PHP integrated development tool
