Niko Granö

Talk about programming and PHP and Sysadmin

  • Contact
  • Home
  • Privacy Policy
PHP Programming 

Serializing PHP Entities to JSON

March 11, 2019July 21, 20194 years ago Niko 9950 Views 0 Comments JSON, Libraries, Packagist, PHP, REST min read

Problem So, as I fetch object from the database by using ORM and I might sometimes return results via REST. This means usually I end up mapping getters to array. This seems boring, time consuming,

Read more
Magento 2 PHP 

BSS Multiwishlist XSS Injection

December 5, 2019December 12, 20193 years ago Niko 5242 Views 0 Comments CWE-79, magento2, xss-injection min read

This time I have been moving to weird and good Magento 2 world. How is it good? I have noticed (at least on those modules I’ve gone trough) there is a lot less issues in

Read more
Magento 1 PHP Programming 

Magento 1: BL/CustomGrid Security Flaw

July 24, 2019July 31, 20194 years ago Niko 7986 Views 2 Comments magento1, object-injection, security, xss-injection min read

As most of people can notice, I have been going trough Magento modules lately hunting for possible security flaws. This time I decided to review BL/CustomGrid, why? This module is not maintained for long time

Read more
Verified Reviews Security Flaw
Magento 1 PHP Programming 

Magento 1: Netreviews/Avisverifies Security Flaw

July 21, 2019July 24, 20194 years ago Niko 5540 Views 0 Comments CWE-79, CWE-915, magento1, object-injection, security min read

After browsing again Magevulndb repository I encountered issue and PR open due original reporter have went 404. So I decided to give some help for these guys! Anyways, everybody wins when issues are reported. Discovering

Read more
Delete Orders Exploit
Magento 1 PHP Programming 

Magento 1: Raveinfosys/DeleteOrders Security flaw

July 15, 2019July 26, 20194 years ago Niko 5339 Views 0 Comments magento1, PHP, security, sql-injection min read

I have discovered possible SQL injection (CWE-89) on Raveinfosys/DeleteOrders extensions. This is extension to provide possibility delete orders. Like they describe it Currently, Magento® doesn’t allow you to delete an order from the store. You

Read more
PHP Programming 

PHP 7.4 is coming!

March 10, 2019July 20, 20194 years ago Niko 50918 Views 1 Comment New Features of PHP 7.4, PHP, PHP7.4, RFC min read

So, finally. They made it. One of my favorite PHP releases ever. Expecting new PHP 7.4 to be released late 2019. Let’s go trough all features we are going to get in PHP 7.4. I

Read more

PHP 7.4

PHP 7.4 is coming!
PHP Programming 

PHP 7.4 is coming!

March 10, 20194 years ago Niko 1 min read

So, finally. They made it. One of my favorite PHP releases ever. Expecting new PHP 7.4 to be released late 2019. Let’s go trough all features we are going to get in PHP 7.4. I

Categories

  • Magento 1
  • Magento 2
  • PHP
  • Programming

Subscribe for latest blogs

Loading
Buy me a coffeeBuy me a coffee
Copyright © 2023 Niko Granö.
Hosted by Iron Lions.