| Package Information |
| Summary |
XSS code sniffer |
| Maintainers |
Xinchen Hui <
laruence at php dot net >
(lead)
[details]
|
| License |
PHP |
| Description |
An extension used for detecting XSS codes(tainted string),
And also can be used to spot sql injection vulnerabilities, shell inject, etc. |
Release notes
Version 0.4.0
(beta)
|
- Support trim/rtrim/ltrim
- Dosen't depend on exposing of zif_* symbols any more
- Fixed a potential crash(PHP 5.2)
- Fixed bug that concat_assign lost tainted info in php 5.4(if the var_ptr is tainted while value is not)
- Fix memory leak in assign_concat
- Fix tests faild of sprintf/trim etc args signature
- Fixed compiler warnings |
|
