Content deleted Content added
→top: Try to use standard meaning of "a string containing a character" |
No edit summary |
||
Line 3:
The length of a C string is found by searching for the (first) NUL byte. This can be slow as it takes O(''n'') ([[linear time]]) with respect to the string length. It also means that a string cannot contain a NUL character (there is a NUL in memory, but it is after the last character, not "in" the string).
Null byte injection in PHP concerns how null bytes are handled in filesystem operations. If an attacker can inject a null byte into a filepath, the underlying C function will disregard anything after the malicious character. This can be used in order to bypass constraints such as the intended file's extension.<ref>https://security.stackexchange.com/questions/48187/null-byte-injection-on-php</ref>
== History ==
| |||