Backports unserialize options introduced in PHP 7.0 to older PHP versions. This was originally designed as a Proof of Concept for Symfony Issue #21090.
You can use this package in projects that rely on PHP versions older than PHP 7.0. In case you are using PHP 7.0+ the original unserialize() will be used instead.
From the documentation:
Warning: Do not pass untrusted user input to unserialize(). Unserialization can result in code being loaded and executed due to object instantiation and autoloading, and a malicious user may be able to exploit this.
This warning holds true even when
allowed_classes is used.
Please login to add feedback.
|submitted||4 months ago|
|in testing||4 months ago|
|in stable||3 months ago|
|0||0||#1707960 Review Request: php-brumann-polyfill-unserialize - Backports unserialize options introduced in PHP 7.0|