This time, there is one more format function than the 5.3 version. In simple terms, it is a very violent replacement. The deserialized data cannot be passed directly because deserialization requires double quotes.
framework/phpok_tpl_helper.php::phpok
$GLOBALS['app']->call->phpok($id,$ext) is phpok_call.php::phpok()
framework/phpok_call.php::phpok
$rs is completely controllable, so you can control the $func
but there is a limitation
Version 5.4
analysis
Arbitrary SQL statement execution
framework/api/call_control.php::index_f
formatfunction than the 5.3 version. In simple terms, it is a very violent replacement. The deserialized data cannot be passed directly because deserialization requires double quotes.framework/phpok_tpl_helper.php::phpok
$GLOBALS['app']->call->phpok($id,$ext)isphpok_call.php::phpok()framework/phpok_call.php::phpok
$rsis completely controllable, so you can control the$funcbut there is a limitation_sqlframework/phpok_call.php::_sql
framework/engine/db/mysqli.php::get_all
$rs['sqlinfo']directly passed queryframework/engine/db/mysqli.php::query
Deserialization
Here is the same as last time,it's just the deserialization trigger point in
_fieldsframework/phpok_call.php::_fields
framework/model/project.php::project_one
framework/model/module.php::fields_all
$this-> db-> prefix."fieldstable.poc