<?php
// Access a property with no restrictions
function stole($object,$property){
$dict = (array)$object;
$class = get_class($object);
return isset($dict[$property])?
$dict[$property]:(isset($dict["\0*\0$property"])?
$dict["\0*\0$property"]:(isset($dict["\0$class\0$property"])?
$dict["\0$class\0$property"]:null));
}
// Modify a property with no restrictions
function inject(&$object,$property,$value){
$dict = (array)$object;
$class = get_class($object);
if (isset($dict["\0$class\0$property"])) {
$dict["\0$class\0$property"] = $value;
$object = castToClass($dict,$class);
} elseif (isset($dict["\0*\0$property"])) {
$dict["\0*\0$property"] = $value;
$object = castToClass($dict,$class);
} elseif (isset($dict[$property])) {
$object->$property = $value;
} else {
return ;
}
}
// Required because we don't know if className has a __set_state defined.
function castToClass(array $array,$className) {
return unserialize(
'O:'.strlen($className).':"'
.$className.'"'.strstr(serialize($array), ':')
);
}
// Example
class Safe {
private $content = 'gold';
}
$mySafe = new Safe();
// Inject value into a private property
inject($mySafe,'content','Magic!');
echo "I've robbed your ",stole($mySafe,'content'),"!";
- Output for 5.3.0 - 5.3.29, 5.4.0 - 5.4.45, 5.5.0 - 5.5.38, 5.6.0 - 5.6.40, 7.0.0 - 7.0.33, 7.1.0 - 7.1.33, 7.2.0 - 7.2.34, 7.3.0 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.28, 8.2.0 - 8.2.18, 8.3.0 - 8.3.6
- I've robbed your Magic!!
preferences:
297.32 ms | 404 KiB | 415 Q