<?php
function sanipath( $path ) {
global $patternsPath;
global $styleguidePath;
$saniPath = str_replace( "../", "", $path );
$saniPath = str_replace( ";", "", $saniPath );
$saniPath = htmlspecialchars( $saniPath );
$saniFile = preg_replace( "/\.[^$]*/", "", $saniPath);
$ret = $saniFile . ".html";
return $ret;
}
var_dump(sanipath('/files/../../../var/www/config.ini'));
- Output for 4.3.0 - 4.3.11, 4.4.0 - 4.4.9, 5.0.0 - 5.0.5, 5.1.0 - 5.1.6, 5.2.0 - 5.2.17, 5.3.0 - 5.3.29, 5.4.0 - 5.4.45, 5.5.0 - 5.5.38, 5.6.0 - 5.6.28, 7.0.0 - 7.0.20, 7.1.0 - 7.1.25, 7.2.0 - 7.2.33, 7.3.0 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.28, 8.2.0 - 8.2.18, 8.3.0 - 8.3.6
- string(26) "/files/var/www/config.html"
preferences:
209.48 ms | 406 KiB | 371 Q