- var_dump: documentation ( source)
- array_slice: documentation ( source)
- unserialize: documentation ( source)
- serialize: documentation ( source)
- explode: documentation ( source)
- sprintf: documentation ( source)
<?php
class CantUnserializeThis extends ArrayObject
{
}
$className = 'CantUnserializeThis';
$serialized = serialize(new ArrayObject());
$chunks = explode(':', $serialized);
$serializedValuesChunk = array_slice(3, $chunks);
var_dump($serializedValuesChunk);
var_dump(unserialize(sprintf(
'C:%d:"%s":0:{}',
strlen($className),
$className
)));
var_dump(unserialize(sprintf(
'S:%d:"%s":0:{}',
strlen($className),
$className
)));