Vulny-Code-Static-Analysis/vulns/non-literal-header.php

13 lines
232 B
PHP
Raw Normal View History

2022-04-30 13:00:48 +00:00
<?php
$data = $_GET["data"];
// ruleid: non-literal-header
header("Some-Header: $data");
$data = $_GET["data"];
// ruleid: non-literal-header
header("Some-Header: ".$data);
// ok: non-literal-header
header("Some-Header: value");