PHP Compatibility Checker reports error with Bad Behavior

  • Is this something that should be whitelisted, or should it be updated in BB?

    FILE: /home1/XXXXXXXXXX/public_html/wp-content/plugins/bad-behavior/bad-behavior/blacklist.inc.php
    ——————————————————————————————————————————————————————-
    FOUND 1 ERROR AFFECTING 1 LINE
    ——————————————————————————————————————————————————————-
    145 | ERROR | The behaviour of hexadecimal numeric strings was inconsistent prior to PHP 7 and support has been removed in PHP 7. Found: “0x31303235343830303536”
    ——————————————————————————————————————————————————————-

Viewing 1 replies (of 1 total)
  • Gone Fishin

    (@terryg-1)

    After doing a compatibility scan myself, I was wondering the same thing. And, since I see this question is a month old without an answer, I did some research.

    The issue is that, in PHP 7, hexadecimal strings are no longer considered to be numeric. That means that trying to manipulate such a string, as given in the error report, as a number would cause problems.

    However, that particular string is used in the request uri (URL) when attempting to compromise a site. As such, it is a string, and, from a review of the PHP code in the named file, BB uses it as a string only and not a number.

    Therefore, I am highly confident it is not an issue and BB can be safely whitelisted.

Viewing 1 replies (of 1 total)
  • The topic ‘PHP Compatibility Checker reports error with Bad Behavior’ is closed to new replies.