A Novel Technique for SQL Injection with Php Pdo's Prepared Statements
Posted4 months agoActive4 months ago
slcyber.ioTechstory
calmnegative
Debate
20/100
SQL InjectionPhp PdoSecurity Vulnerability
Key topics
SQL Injection
Php Pdo
Security Vulnerability
A novel SQL injection technique was discovered in PHP PDO's prepared statements, which remains unpatched in PHP versions prior to 8.4, raising concerns about the security of older PHP versions.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
2d
Peak period
1
36-39h
Avg / period
1
Key moments
- 01Story posted
Sep 9, 2025 at 4:42 PM EDT
4 months ago
Step 01 - 02First comment
Sep 11, 2025 at 6:33 AM EDT
2d after posting
Step 02 - 03Peak activity
1 comments in 36-39h
Hottest window of the conversation
Step 03 - 04Latest activity
Sep 11, 2025 at 6:33 AM EDT
4 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
Discussion (1 comments)
Showing 1 comments
10us
4 months ago
Wow nice find! The fact that this isnt patched until php8.4 is creepy. Lots of apps and sites running on much older php versions.
View full discussion on Hacker News
ID: 45188683Type: storyLast synced: 11/17/2025, 6:09:12 PM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.