Bypassing HttpOnly with phpinfo file

so, why phpinfo?

Stealing ci_session with info.php file

Gist: https://gist.github.com/ls4cfk/0deb122d4e2e24ac66cd74d3edf956bf
/examples/servlets/servlet/SessionExample

Born at a very young age.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Most Sophisticated YAML Query and Manipulation

GraphQL with Sinatra (Ruby) — Part 2— Mutations

Tracking usage metrics with Kafka integration

Oracle Fusion Financial Cloud Features — Creating Implementation Users

Introductory Post — Ian Dzindo

Ignition Forum

Ignition casino forum

Planning not to fail in software development

Kubernetes for validating

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Aleksi Kistauri

Aleksi Kistauri

Born at a very young age.

More from Medium

Basic XSS

How I Bypassed Incapsula WAF By Imperva

Unrestricted File Upload (Cloud fare Bypass )