Code Audit/Review

The art of reading through code and analysing it for security issues

After finding and analysing the source code we found a GQL injection. Unfortunately there is a system in place that will ban you for too many requests. So we use a modified binary search algorithm to finish in time.
This short php code contains a critical vulnerability. In this video I will explain in detail what I think while analysing it.