Package Information |
Summary |
XSS code sniffer |
Maintainers |
Xinchen Hui <laruence@php.net> (lead) [details]
|
License |
PHP |
Description |
An extension used for detecting XSS codes(tainted string),
And also can be used to spot sql injection vulnerabilities, shell inject, etc. |
Release notes Version 0.4.0 (beta) |
- Support trim/rtrim/ltrim
- Dosen't depend on exposing of zif_* symbols any more
- Fixed a potential crash(PHP 5.2)
- Fixed bug that concat_assign lost tainted info in php 5.4(if the var_ptr is tainted while value is not)
- Fix memory leak in assign_concat
- Fix tests faild of sprintf/trim etc args signature
- Fixed compiler warnings |
|