docker-vulnerable-dvwa/dvwa/vulnerabilities/xss_r/source/high.php

15 lines
315 B
PHP
Raw Normal View History

2016-12-02 19:19:11 +00:00
<?php
2018-10-12 15:49:58 +00:00
header ("X-XSS-Protection: 0");
2016-12-02 19:19:11 +00:00
// Is there any input?
if( array_key_exists( "name", $_GET ) && $_GET[ 'name' ] != NULL ) {
// Get input
$name = preg_replace( '/<(.*)s(.*)c(.*)r(.*)i(.*)p(.*)t/i', '', $_GET[ 'name' ] );
// Feedback for end user
$html .= "<pre>Hello ${name}</pre>";
}
?>