A critical vulnerability in PHP's PDO (PHP Data Objects) library has been discovered that allows attackers to perform SQL injection attacks even when applications use prepared statements and proper escaping techniques.
Security researcher hashkitten revealed this technique during the DownUnderCTF competition, demonstrating how PDO's...