Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

--TEST-- mb_strcut() missing boundary check. --EXTENSIONS-- mbstring --FILE-- <?php mb_int..

Decoded Output download

--TEST--
mb_strcut() missing boundary check.
--EXTENSIONS--
mbstring
--FILE--
<?php
mb_internal_encoding("UCS-4LE");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("UCS-4BE");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("UCS-2LE");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("UCS-2BE");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("UTF-16");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("UTF-8");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("ISO-8859-1");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
?>
--EXPECT--
string(24) "610000006200000063000000"
string(24) "000000610000006200000063"
string(12) "610062006300"
string(12) "006100620063"
string(12) "006100620063"
string(6) "616263"
string(6) "616263"

Did this file decode correctly?

Original Code

--TEST--
mb_strcut() missing boundary check.
--EXTENSIONS--
mbstring
--FILE--
<?php
mb_internal_encoding("UCS-4LE");
var_dump(bin2hex(mb_strcut("\x61\x00\x00\x00\x62\x00\x00\x00\x63\x00\x00\x00", 0, 32)));
mb_internal_encoding("UCS-4BE");
var_dump(bin2hex(mb_strcut("\x00\x00\x00\x61\x00\x00\x00\x62\x00\x00\x00\x63", 0, 32)));
mb_internal_encoding("UCS-2LE");
var_dump(bin2hex(mb_strcut("\x61\x00\x62\x00\x63\x00", 0, 32)));
mb_internal_encoding("UCS-2BE");
var_dump(bin2hex(mb_strcut("\x00\x61\x00\x62\x00\x63", 0, 32)));
mb_internal_encoding("UTF-16");
var_dump(bin2hex(mb_strcut("\x00\x61\x00\x62\x00\x63", 0, 32)));
mb_internal_encoding("UTF-8");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
mb_internal_encoding("ISO-8859-1");
var_dump(bin2hex(mb_strcut("abc", 0, 32)));
?>
--EXPECT--
string(24) "610000006200000063000000"
string(24) "000000610000006200000063"
string(12) "610062006300"
string(12) "006100620063"
string(12) "006100620063"
string(6) "616263"
string(6) "616263"

Function Calls

mb_internal_encoding 1

Variables

None

Stats

MD5 8d82ed165477af7542f76d6e11aa843a
Eval Count 0
Decode Time 88 ms