├── .devcontainer ├── Dockerfile └── devcontainer.json ├── .gitattributes ├── .github └── workflows │ └── main.yml ├── .gitignore ├── LICENSE ├── README.md ├── build.sh ├── composer.json ├── docs ├── API.md ├── CONTRIBUTING.md ├── CUSTOM_ANALYSIS.md ├── DEV.md ├── EXAMPLES.md ├── FALSE_POSITIVES.md ├── FAQ.md ├── INCLUDES.md ├── OUTPUT.md ├── SPECIFY_ANALYSIS.md ├── customcallgraph1.png └── dev │ └── STATES.md ├── grumphp.yml ├── package ├── composer.json └── src │ ├── progpilot │ ├── Analysis │ │ ├── AssertionAnalysis.php │ │ ├── CustomAnalysis.php │ │ ├── FuncAnalysis.php │ │ ├── IncludeAnalysis.php │ │ ├── ResolveDefs.php │ │ ├── SecurityAnalysis.php │ │ ├── TaintAnalysis.php │ │ └── VisitorAnalysis.php │ ├── Analyzer.php │ ├── CallVisitor.php │ ├── Code │ │ ├── MyCode.php │ │ ├── MyInstruction.php │ │ └── Opcodes.php │ ├── Command │ │ └── ProgpilotCommand.php │ ├── Console │ │ └── Application.php │ ├── Context.php │ ├── ContextInternalApi.php │ ├── Dataflow │ │ ├── ArrayMulti.php │ │ ├── Classes.php │ │ ├── Definitions.php │ │ ├── Functions.php │ │ ├── Objects.php │ │ └── VisitorDataflow.php │ ├── Helpers │ │ ├── Analysis.php │ │ ├── Callbacks.php │ │ └── State.php │ ├── Inputs │ │ ├── MyCustomFunction.php │ │ ├── MyCustomRule.php │ │ ├── MyCustomVariable.php │ │ ├── MyInclude.php │ │ ├── MyInputs.php │ │ ├── MyInputsInternalApi.php │ │ ├── MySanitizer.php │ │ ├── MySink.php │ │ ├── MySource.php │ │ ├── MySpecify.php │ │ ├── MyValidator.php │ │ └── MyVuln.php │ ├── Lang.php │ ├── Objects │ │ ├── MyAssertion.php │ │ ├── MyBlock.php │ │ ├── MyClass.php │ │ ├── MyDefOriginal.php │ │ ├── MyDefState.php │ │ ├── MyDefinition.php │ │ ├── MyFile.php │ │ ├── MyFunction.php │ │ ├── MyOp.php │ │ └── MyProperty.php │ ├── Outputs │ │ ├── MyOutputs.php │ │ ├── MyOutputsInternalApi.php │ │ ├── MyResult.php │ │ └── SarifOutput.php │ ├── Representations │ │ ├── AbstractSyntaxTree.php │ │ ├── Callgraph.php │ │ ├── ControlFlowGraph.php │ │ ├── DFSVisitor.php │ │ ├── DepthFirstSearch.php │ │ └── NodeCG.php │ ├── Transformations │ │ └── Php │ │ │ ├── Assign.php │ │ │ ├── Common.php │ │ │ ├── Expr.php │ │ │ ├── Exprs │ │ │ ├── ArrayFetch.php │ │ │ ├── CastFetch.php │ │ │ ├── ConcatFetch.php │ │ │ ├── ConstFetch.php │ │ │ ├── DimFetch.php │ │ │ ├── FunccallFetch.php │ │ │ ├── LiteralFetch.php │ │ │ ├── PropertyFetch.php │ │ │ ├── StaticPropertyFetch.php │ │ │ └── VariableFetch.php │ │ │ ├── FuncCall.php │ │ │ └── Transform.php │ └── Utils.php │ └── uptodate_data │ └── php │ ├── dev │ ├── rules.json │ ├── sanitizers.json │ ├── sinks.json │ ├── sources.json │ └── validators.json │ ├── frameworks │ ├── codeigniter │ │ ├── rules.json │ │ ├── sanitizers.json │ │ ├── sinks.json │ │ ├── sources.json │ │ └── validators.json │ ├── laravel │ │ ├── rules.json │ │ ├── sanitizers.json │ │ ├── sinks.json │ │ ├── sources.json │ │ └── validators.json │ ├── symfony │ │ ├── rules.json │ │ ├── sanitizers.json │ │ ├── sinks.json │ │ ├── sources.json │ │ └── validators.json │ └── wordpress │ │ ├── rules.json │ │ ├── sanitizers.json │ │ ├── sinks.json │ │ ├── sources.json │ │ └── validators.json │ ├── rules.json │ ├── sanitizers.json │ ├── sinks.json │ ├── sources.json │ └── validators.json ├── progpilot.yml └── projects ├── example ├── composer.json ├── example1.php ├── example2.php └── source_code1.php ├── example_config ├── composer.json ├── configuration.yml ├── example.php └── example1.php ├── phar ├── composer.json └── progpilot └── tests ├── composer.json ├── conditionstest.php ├── config1.yml ├── config2.yml ├── config3.yml ├── config4.yml ├── config5.yml ├── config6.yml ├── config7.yml ├── configtest.php ├── customtest.php ├── datatest.php ├── false_positives.json ├── flowstest.php ├── folderexcludedtest.php ├── folderincludedtest.php ├── foldertest.php ├── frameworkstest.php ├── generictest.php ├── graphtest.php ├── include_files.json ├── includetest.php ├── negativetest.php ├── ooptest.php ├── optimizationstest.php ├── phpunit.xml.dist ├── phpwandertest.php ├── realtest.php ├── resolve_includes.json ├── resolved_includes.json ├── run_all.php ├── run_all_configurations.php ├── run_all_folders.php ├── run_config.php ├── run_exclude_files.php ├── run_file.php ├── run_flows.php ├── run_folder.php ├── run_include_files.php ├── storedtest.php ├── testarray.php ├── testcfg.php ├── testcode.php ├── testfalsepositives.php ├── testfile.php ├── testincludes.php ├── testonadd.php ├── testphpcfg.php ├── testphpparser.php ├── tests ├── conditions │ ├── condition1.php │ ├── condition2.php │ ├── condition3.php │ ├── condition4.php │ ├── condition5.php │ ├── condition6.php │ ├── condition7.php │ └── condition8.php ├── custom │ ├── cert1.php │ ├── cert2.php │ ├── cert3.php │ ├── cert4.php │ ├── cert5.php │ ├── conditionalvalues.php │ ├── cookies1.php │ ├── custom1.php │ ├── custom2.php │ ├── custom3.php │ ├── custom4.php │ ├── custom5.php │ ├── customcookieoptions.php │ └── unsetcookies.php ├── data │ ├── customvalidator1.php │ ├── customvalidator2.php │ ├── customvalidator3.php │ ├── customvalidator4.php │ ├── customvalidator5.php │ ├── sanitizer1.php │ ├── sanitizer10.php │ ├── sanitizer11.php │ ├── sanitizer2.php │ ├── sanitizer3.php │ ├── sanitizer4.php │ ├── sanitizer5.php │ ├── sanitizer6.php │ ├── sanitizer7.php │ ├── sanitizer8.php │ ├── sanitizer9.php │ ├── sink1.php │ ├── sink2.php │ ├── sink3.php │ ├── sink4.php │ ├── sink5.php │ ├── sink6.php │ ├── sink7.php │ ├── sink8.php │ ├── sink9.php │ ├── source1.php │ ├── source10.php │ ├── source11.php │ ├── source12.php │ ├── source13.php │ ├── source14.php │ ├── source15.php │ ├── source16.php │ ├── source17.php │ ├── source18.php │ ├── source19.php │ ├── source2.php │ ├── source20.php │ ├── source21.php │ ├── source22.php │ ├── source3.php │ ├── source4.php │ ├── source5.php │ ├── source6.php │ ├── source7.php │ ├── source8.php │ ├── source9.php │ ├── validator1.php │ ├── validator2.php │ ├── validator3.php │ ├── validator4.php │ ├── validator5.php │ └── validator6.php ├── flows │ ├── flow1.php │ ├── flow2.php │ ├── flow3.php │ ├── flow4.php │ └── incorrectflow.txt ├── folders │ ├── excludedbydefault1 │ │ └── test1.php │ ├── excludedbydefault2 │ │ ├── foo │ │ │ ├── node_modules │ │ │ │ └── test3.php │ │ │ └── test2.php │ │ └── test1.php │ ├── folder1 │ │ ├── mix1.php │ │ ├── mix2.php │ │ └── mix3.php │ ├── folder2 │ │ ├── mix3.php │ │ └── sub_folder1 │ │ │ ├── mix1.php │ │ │ └── sub_folder2 │ │ │ └── mix2.php │ ├── folder3 │ │ ├── mix3.php │ │ └── sub_folder1 │ │ │ ├── mix1.php │ │ │ └── sub_folder2 │ │ │ └── mix2.php │ ├── folder4 │ │ ├── mix3.php │ │ ├── onefileexcludedtest.php │ │ └── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtest.php │ │ │ └── onefolderexcludedtest │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtest.php │ ├── folderconfig1 │ │ ├── mix3.php │ │ ├── onefileexcludedtestconfig.php │ │ ├── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ │ ├── mix2.php │ │ │ │ └── onefileexcludedtestconfig.php │ │ └── sub_folder2 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtestconfig.php │ ├── folderconfig2 │ │ ├── fileonly.php │ │ ├── node_modules │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ │ ├── mix2.php │ │ │ │ └── onefileexcludedtestconfig.php │ │ ├── onefileexcludedtestconfig.php │ │ └── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtestconfig.php │ ├── folderconfig3 │ │ ├── mix3.php │ │ ├── onefileexcludedtestconfig.php │ │ ├── sources.json │ │ ├── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ │ ├── mix2.php │ │ │ │ └── onefileexcludedtestconfig.php │ │ └── sub_folder2 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtestconfig.php │ ├── folderconfig4 │ │ ├── mix3.php │ │ ├── onefileexcludedtestconfig.php │ │ ├── sources.json │ │ ├── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ │ ├── mix2.php │ │ │ │ └── onefileexcludedtestconfig.php │ │ └── sub_folder2 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtestconfig.php │ ├── folderconfig5 │ │ ├── false_positives.json │ │ ├── mix3.php │ │ ├── onefileexcludedtestconfig.php │ │ ├── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ │ ├── mix2.php │ │ │ │ └── onefileexcludedtestconfig.php │ │ └── sub_folder2 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtestconfig.php │ ├── folderconfig6 │ │ ├── false_positives.json │ │ ├── mix3.php │ │ ├── onefileexcludedtestconfig.php │ │ ├── sub_folder1 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ │ ├── mix2.php │ │ │ │ └── onefileexcludedtestconfig.php │ │ └── sub_folder2 │ │ │ ├── mix1.php │ │ │ ├── onefileexcludedtestconfig.php │ │ │ └── onefolderexcludedtestconfig │ │ │ ├── mix2.php │ │ │ └── onefileexcludedtestconfig.php │ └── folderconfig7 │ │ ├── include_failures.json │ │ ├── mix3.php │ │ ├── resolved_includes.json │ │ └── sub_folder1 │ │ └── mix1.php ├── frameworks │ ├── codeigniter1.php │ ├── codeigniter2.php │ ├── codeigniter3.php │ └── symfony1.php ├── generic │ ├── alias1.php │ ├── alias2.php │ ├── alias3.php │ ├── alias4.php │ ├── alias5.php │ ├── arrays1.php │ ├── arrays10.php │ ├── arrays11.php │ ├── arrays12.php │ ├── arrays13.php │ ├── arrays14.php │ ├── arrays15.php │ ├── arrays16.php │ ├── arrays17.php │ ├── arrays18.php │ ├── arrays19.php │ ├── arrays2.php │ ├── arrays20.php │ ├── arrays3.php │ ├── arrays4.php │ ├── arrays5.php │ ├── arrays6.php │ ├── arrays7.php │ ├── arrays8.php │ ├── arrays9.php │ ├── arraysexpr1.php │ ├── arraysexpr2.php │ ├── arraysexpr3.php │ ├── arraysexpr4.php │ ├── arraysrec1.php │ ├── calluserfunc1.php │ ├── calluserfunc2.php │ ├── calluserfunc3.php │ ├── calluserfunc4.php │ ├── concat1.php │ ├── concat2.php │ ├── concat3.php │ ├── foreach1.php │ ├── functions1.php │ ├── functions10.php │ ├── functions11.php │ ├── functions12.php │ ├── functions13.php │ ├── functions14.php │ ├── functions15.php │ ├── functions16.php │ ├── functions17.php │ ├── functions18.php │ ├── functions19.php │ ├── functions2.php │ ├── functions20.php │ ├── functions21.php │ ├── functions22.php │ ├── functions23.php │ ├── functions3.php │ ├── functions4.php │ ├── functions5.php │ ├── functions6.php │ ├── functions7.php │ ├── functions8.php │ ├── functions9.php │ ├── functionsrec1.php │ ├── global1.php │ ├── global2.php │ ├── global3.php │ ├── global4.php │ ├── global5.php │ ├── loop1.php │ ├── loop2.php │ ├── loop3.php │ ├── loop4.php │ ├── mix1.php │ ├── mix2.php │ ├── mix3.php │ ├── namespace1.php │ ├── namespace2.php │ ├── simple1.php │ ├── simple10.php │ ├── simple2.php │ ├── simple3.php │ ├── simple4.php │ ├── simple5.php │ ├── simple6.php │ ├── simple7.php │ ├── simple8.php │ ├── simple9.php │ └── strings1.php ├── graphs │ └── functionsgraph1.php ├── includes │ ├── dvwa │ │ ├── dvwaPage.inc.php │ │ ├── high.php │ │ ├── impossible.php │ │ ├── low.php │ │ └── medium.php │ ├── resolved_includes_simple5.txt │ ├── simple1.php │ ├── simple10.php │ ├── simple10_include.php │ ├── simple11.php │ ├── simple11_include.php │ ├── simple12.php │ ├── simple12_include.php │ ├── simple13.php │ ├── simple13_include.php │ ├── simple14.php │ ├── simple14_include.php │ ├── simple14_include_ret.php │ ├── simple15_circular.php │ ├── simple15_include1.php │ ├── simple15_include2.php │ ├── simple16.php │ ├── simple16_include.php │ ├── simple17.php │ ├── simple17_include.php │ ├── simple18.php │ ├── simple18_include.php │ ├── simple19.php │ ├── simple1_include.php │ ├── simple2.php │ ├── simple20.php │ ├── simple20_include.php │ ├── simple20_subinclude.php │ ├── simple2_require.php │ ├── simple3.php │ ├── simple3_includeonce.php │ ├── simple4.php │ ├── simple4_requireonce.php │ ├── simple5.php │ ├── simple5_include.php │ ├── simple6.php │ ├── simple6_include.php │ ├── simple7.php │ ├── simple7_include1.php │ ├── simple7_include2.php │ ├── simple8.php │ ├── simple8_include.php │ └── simple9.php ├── negative │ ├── issue_13.php │ ├── missing_argument_func.php │ ├── parser_error1.php │ ├── parser_error2.php │ ├── parser_error3.php │ ├── undefined_class.php │ ├── undefined_func.php │ └── undefined_method.php ├── oop │ ├── chained1.php │ ├── chained2.php │ ├── simple1.php │ ├── simple10.php │ ├── simple11.php │ ├── simple12.php │ ├── simple13.php │ ├── simple14.php │ ├── simple15.php │ ├── simple16.php │ ├── simple17.php │ ├── simple18.php │ ├── simple19.php │ ├── simple2.php │ ├── simple20.php │ ├── simple21.php │ ├── simple22.php │ ├── simple23 │ │ ├── a.php │ │ ├── b.php │ │ └── c.php │ ├── simple24.php │ ├── simple25.php │ ├── simple26.php │ ├── simple27.php │ ├── simple28.php │ ├── simple29.php │ ├── simple3.php │ ├── simple30.php │ ├── simple31.php │ ├── simple32.php │ ├── simple33.php │ ├── simple34.php │ ├── simple35.php │ ├── simple36.php │ ├── simple4.php │ ├── simple5.php │ ├── simple6.php │ ├── simple7.php │ ├── simple8.php │ └── simple9.php ├── optimizations │ └── cleanopinfoconcatleft.php ├── performance │ ├── ID3 │ │ ├── getid3.lib.php │ │ ├── getid3.php │ │ ├── license.commercial.txt │ │ ├── license.txt │ │ ├── module.audio-video.asf.php │ │ ├── module.audio-video.flv.php │ │ ├── module.audio-video.matroska.php │ │ ├── module.audio-video.quicktime.php │ │ ├── module.audio-video.riff.php │ │ ├── module.audio.ac3.php │ │ ├── module.audio.dts.php │ │ ├── module.audio.flac.php │ │ ├── module.audio.mp3.php │ │ ├── module.audio.ogg.php │ │ ├── module.tag.apetag.php │ │ ├── module.tag.id3v1.php │ │ ├── module.tag.id3v2.php │ │ ├── module.tag.lyrics3.php │ │ └── readme.txt │ ├── benchmarks.txt │ ├── class-wp-query.php │ ├── defs.php │ ├── gen_files.php │ └── memory.txt ├── phpwander │ ├── test0.php │ ├── test1.php │ ├── test10.php │ ├── test10B.php │ ├── test10C.php │ ├── test11.php │ ├── test12.php │ ├── test12D.php │ ├── test13.php │ ├── test13E.php │ ├── test14.php │ ├── test14F.php │ ├── test15.php │ ├── test2.php │ ├── test3.php │ ├── test3A.php │ ├── test4.php │ ├── test4F.php │ ├── test5.php │ ├── test6.php │ ├── test7.php │ ├── test8.php │ └── test9.php ├── real │ ├── ClassLoader.php │ ├── array1.php │ ├── class-wp-filesystem-direct.php │ ├── composer │ │ ├── composer.json │ │ ├── composer.lock │ │ ├── index.php │ │ ├── notexcluded_vendor │ │ │ ├── autoload.php │ │ │ ├── composer │ │ │ │ ├── ClassLoader.php │ │ │ │ ├── LICENSE │ │ │ │ ├── autoload_classmap.php │ │ │ │ ├── autoload_files.php │ │ │ │ ├── autoload_namespaces.php │ │ │ │ ├── autoload_psr4.php │ │ │ │ ├── autoload_real.php │ │ │ │ ├── autoload_static.php │ │ │ │ └── installed.json │ │ │ └── progpilot │ │ │ │ └── tests │ │ │ │ └── test_package │ │ └── test_package │ │ │ ├── composer.json │ │ │ └── init.php │ ├── executiontime │ │ ├── Item.php │ │ ├── class-wp-query.php │ │ └── class-wp-query3.php │ ├── feedbackgithub │ │ └── test.php │ ├── incallstack │ │ ├── class-ftp-pure.php │ │ ├── class-ftp-sockets.php │ │ └── class-ftp.php │ ├── multiplecalls │ │ └── test.php │ ├── mutliplecall_memory.php │ ├── mutliplecall_memory_include.php │ ├── namespaces1 │ │ ├── composer.json │ │ ├── src │ │ │ ├── nssecondlevel1 │ │ │ │ └── Foo1.php │ │ │ └── nssecondlevel2 │ │ │ │ └── Foo2.php │ │ └── test.php │ ├── object1.php │ ├── sqli.php │ ├── wordpress │ │ ├── index.php │ │ ├── license.txt │ │ ├── readme.html │ │ ├── wp-admin │ │ │ ├── admin-db.php │ │ │ ├── admin-footer.php │ │ │ ├── admin-functions.php │ │ │ ├── admin-header.php │ │ │ ├── admin.php │ │ │ ├── bookmarklet.php │ │ │ ├── categories.php │ │ │ ├── edit-comments.php │ │ │ ├── edit-form-advanced.php │ │ │ ├── edit-form-ajax-cat.php │ │ │ ├── edit-form-comment.php │ │ │ ├── edit-form.php │ │ │ ├── edit-link-form.php │ │ │ ├── edit-page-form.php │ │ │ ├── edit-pages.php │ │ │ ├── edit.php │ │ │ ├── execute-pings.php │ │ │ ├── images │ │ │ │ ├── box-bg.gif │ │ │ │ ├── box-butt.gif │ │ │ │ ├── box-head.gif │ │ │ │ ├── browse-happy.gif │ │ │ │ ├── fade-butt.png │ │ │ │ ├── notice.gif │ │ │ │ ├── toggle.gif │ │ │ │ └── wordpress-logo.png │ │ │ ├── import.php │ │ │ ├── import │ │ │ │ ├── b2.php │ │ │ │ ├── blogger.php │ │ │ │ ├── greymatter.php │ │ │ │ ├── livejournal.php │ │ │ │ ├── mt.php │ │ │ │ ├── rss.php │ │ │ │ └── textpattern.php │ │ │ ├── index.php │ │ │ ├── inline-uploading.php │ │ │ ├── install-helper.php │ │ │ ├── install.php │ │ │ ├── link-add.php │ │ │ ├── link-categories.php │ │ │ ├── link-import.php │ │ │ ├── link-manager.php │ │ │ ├── link-parse-opml.php │ │ │ ├── list-manipulation.js │ │ │ ├── list-manipulation.php │ │ │ ├── menu-header.php │ │ │ ├── menu.php │ │ │ ├── moderation.php │ │ │ ├── options-discussion.php │ │ │ ├── options-general.php │ │ │ ├── options-head.php │ │ │ ├── options-misc.php │ │ │ ├── options-permalink.php │ │ │ ├── options-reading.php │ │ │ ├── options-writing.php │ │ │ ├── options.php │ │ │ ├── page-new.php │ │ │ ├── plugin-editor.php │ │ │ ├── plugins.php │ │ │ ├── post.php │ │ │ ├── profile-update.php │ │ │ ├── profile.php │ │ │ ├── setup-config.php │ │ │ ├── sidebar.php │ │ │ ├── templates.php │ │ │ ├── theme-editor.php │ │ │ ├── themes.php │ │ │ ├── update-links.php │ │ │ ├── upgrade-functions.php │ │ │ ├── upgrade-schema.php │ │ │ ├── upgrade.php │ │ │ ├── user-edit.php │ │ │ ├── users.php │ │ │ └── wp-admin.css │ │ ├── wp-atom.php │ │ ├── wp-blog-header.php │ │ ├── wp-comments-post.php │ │ ├── wp-commentsrss2.php │ │ ├── wp-config.php │ │ ├── wp-content │ │ │ ├── index.php │ │ │ ├── plugins │ │ │ │ ├── akismet │ │ │ │ │ └── akismet.php │ │ │ │ ├── hello.php │ │ │ │ └── wp-db-backup.php │ │ │ └── themes │ │ │ │ ├── classic │ │ │ │ ├── comments-popup.php │ │ │ │ ├── comments.php │ │ │ │ ├── footer.php │ │ │ │ ├── header.php │ │ │ │ ├── index.php │ │ │ │ ├── screenshot.png │ │ │ │ ├── sidebar.php │ │ │ │ └── style.css │ │ │ │ └── default │ │ │ │ ├── 404.php │ │ │ │ ├── archive.php │ │ │ │ ├── archives.php │ │ │ │ ├── attachment.php │ │ │ │ ├── comments-popup.php │ │ │ │ ├── comments.php │ │ │ │ ├── footer.php │ │ │ │ ├── functions.php │ │ │ │ ├── header.php │ │ │ │ ├── images │ │ │ │ ├── audio.jpg │ │ │ │ ├── header-img.php │ │ │ │ ├── kubrickbg.jpg │ │ │ │ ├── kubrickbgcolor.jpg │ │ │ │ ├── kubrickbgwide.jpg │ │ │ │ ├── kubrickfooter.jpg │ │ │ │ └── kubrickheader.jpg │ │ │ │ ├── index.php │ │ │ │ ├── links.php │ │ │ │ ├── page.php │ │ │ │ ├── screenshot.png │ │ │ │ ├── search.php │ │ │ │ ├── searchform.php │ │ │ │ ├── sidebar.php │ │ │ │ ├── single.php │ │ │ │ └── style.css │ │ ├── wp-feed.php │ │ ├── wp-includes │ │ │ ├── cache.php │ │ │ ├── capabilities.php │ │ │ ├── class-IXR.php │ │ │ ├── class-pop3.php │ │ │ ├── class-snoopy.php │ │ │ ├── classes.php │ │ │ ├── comment-functions.php │ │ │ ├── default-filters.php │ │ │ ├── feed-functions.php │ │ │ ├── functions-compat.php │ │ │ ├── functions-formatting.php │ │ │ ├── functions-post.php │ │ │ ├── functions.php │ │ │ ├── gettext.php │ │ │ ├── images │ │ │ │ └── smilies │ │ │ │ │ ├── icon_arrow.gif │ │ │ │ │ ├── icon_biggrin.gif │ │ │ │ │ ├── icon_confused.gif │ │ │ │ │ ├── icon_cool.gif │ │ │ │ │ ├── icon_cry.gif │ │ │ │ │ ├── icon_eek.gif │ │ │ │ │ ├── icon_evil.gif │ │ │ │ │ ├── icon_exclaim.gif │ │ │ │ │ ├── icon_idea.gif │ │ │ │ │ ├── icon_lol.gif │ │ │ │ │ ├── icon_mad.gif │ │ │ │ │ ├── icon_mrgreen.gif │ │ │ │ │ ├── icon_neutral.gif │ │ │ │ │ ├── icon_question.gif │ │ │ │ │ ├── icon_razz.gif │ │ │ │ │ ├── icon_redface.gif │ │ │ │ │ ├── icon_rolleyes.gif │ │ │ │ │ ├── icon_sad.gif │ │ │ │ │ ├── icon_smile.gif │ │ │ │ │ ├── icon_surprised.gif │ │ │ │ │ ├── icon_twisted.gif │ │ │ │ │ └── icon_wink.gif │ │ │ ├── js │ │ │ │ ├── colorpicker.js │ │ │ │ ├── dbx-key.js │ │ │ │ ├── dbx.js │ │ │ │ ├── fat.js │ │ │ │ ├── quicktags.js │ │ │ │ ├── tinymce │ │ │ │ │ ├── blank.htm │ │ │ │ │ ├── langs │ │ │ │ │ │ └── en.js │ │ │ │ │ ├── license.html │ │ │ │ │ ├── license.txt │ │ │ │ │ ├── plugins │ │ │ │ │ │ ├── autosave │ │ │ │ │ │ │ ├── editor_plugin.js │ │ │ │ │ │ │ ├── editor_plugin_src.js │ │ │ │ │ │ │ ├── langs │ │ │ │ │ │ │ │ ├── cs.js │ │ │ │ │ │ │ │ ├── en.js │ │ │ │ │ │ │ │ └── sv.js │ │ │ │ │ │ │ └── readme.txt │ │ │ │ │ │ ├── directionality │ │ │ │ │ │ │ ├── editor_plugin.js │ │ │ │ │ │ │ ├── images │ │ │ │ │ │ │ │ ├── ltr.gif │ │ │ │ │ │ │ │ └── rtl.gif │ │ │ │ │ │ │ └── langs │ │ │ │ │ │ │ │ └── en.js │ │ │ │ │ │ ├── inlinepopups │ │ │ │ │ │ │ ├── css │ │ │ │ │ │ │ │ └── inlinepopup.css │ │ │ │ │ │ │ ├── editor_plugin.js │ │ │ │ │ │ │ ├── editor_plugin_src.js │ │ │ │ │ │ │ ├── images │ │ │ │ │ │ │ │ ├── spacer.gif │ │ │ │ │ │ │ │ ├── window_close.gif │ │ │ │ │ │ │ │ ├── window_maximize.gif │ │ │ │ │ │ │ │ ├── window_minimize.gif │ │ │ │ │ │ │ │ └── window_resize.gif │ │ │ │ │ │ │ ├── jscripts │ │ │ │ │ │ │ │ └── mcwindows.js │ │ │ │ │ │ │ └── readme.txt │ │ │ │ │ │ ├── wordpress │ │ │ │ │ │ │ ├── editor_plugin.js │ │ │ │ │ │ │ ├── images │ │ │ │ │ │ │ │ ├── help.gif │ │ │ │ │ │ │ │ ├── more.gif │ │ │ │ │ │ │ │ ├── more_bug.gif │ │ │ │ │ │ │ │ ├── page.gif │ │ │ │ │ │ │ │ └── page_bug.gif │ │ │ │ │ │ │ ├── langs │ │ │ │ │ │ │ │ └── en.js │ │ │ │ │ │ │ └── wordpress.css │ │ │ │ │ │ └── wphelp │ │ │ │ │ │ │ ├── editor_plugin.js │ │ │ │ │ │ │ ├── images │ │ │ │ │ │ │ └── help.gif │ │ │ │ │ │ │ └── langs │ │ │ │ │ │ │ └── en.js │ │ │ │ │ ├── themes │ │ │ │ │ │ └── advanced │ │ │ │ │ │ │ ├── about.htm │ │ │ │ │ │ │ ├── anchor.htm │ │ │ │ │ │ │ ├── charmap.htm │ │ │ │ │ │ │ ├── color_picker.htm │ │ │ │ │ │ │ ├── css │ │ │ │ │ │ │ ├── editor_content.css │ │ │ │ │ │ │ ├── editor_popup.css │ │ │ │ │ │ │ └── editor_ui.css │ │ │ │ │ │ │ ├── editor_template.js │ │ │ │ │ │ │ ├── editor_template_src.js │ │ │ │ │ │ │ ├── image.htm │ │ │ │ │ │ │ ├── images │ │ │ │ │ │ │ ├── anchor.gif │ │ │ │ │ │ │ ├── anchor_symbol.gif │ │ │ │ │ │ │ ├── backcolor.gif │ │ │ │ │ │ │ ├── bold.gif │ │ │ │ │ │ │ ├── bold_de_se.gif │ │ │ │ │ │ │ ├── bold_fr.gif │ │ │ │ │ │ │ ├── bold_ru.gif │ │ │ │ │ │ │ ├── browse.gif │ │ │ │ │ │ │ ├── bullist.gif │ │ │ │ │ │ │ ├── buttons.gif │ │ │ │ │ │ │ ├── cancel_button_bg.gif │ │ │ │ │ │ │ ├── center.gif │ │ │ │ │ │ │ ├── charmap.gif │ │ │ │ │ │ │ ├── cleanup.gif │ │ │ │ │ │ │ ├── close.gif │ │ │ │ │ │ │ ├── code.gif │ │ │ │ │ │ │ ├── color.gif │ │ │ │ │ │ │ ├── copy.gif │ │ │ │ │ │ │ ├── custom_1.gif │ │ │ │ │ │ │ ├── cut.gif │ │ │ │ │ │ │ ├── forecolor.gif │ │ │ │ │ │ │ ├── full.gif │ │ │ │ │ │ │ ├── hr.gif │ │ │ │ │ │ │ ├── image.gif │ │ │ │ │ │ │ ├── indent.gif │ │ │ │ │ │ │ ├── insert_button_bg.gif │ │ │ │ │ │ │ ├── italic.gif │ │ │ │ │ │ │ ├── italic_de_se.gif │ │ │ │ │ │ │ ├── italic_ru.gif │ │ │ │ │ │ │ ├── left.gif │ │ │ │ │ │ │ ├── link.gif │ │ │ │ │ │ │ ├── newdocument.gif │ │ │ │ │ │ │ ├── numlist.gif │ │ │ │ │ │ │ ├── outdent.gif │ │ │ │ │ │ │ ├── paste.gif │ │ │ │ │ │ │ ├── redo.gif │ │ │ │ │ │ │ ├── removeformat.gif │ │ │ │ │ │ │ ├── right.gif │ │ │ │ │ │ │ ├── spacer.gif │ │ │ │ │ │ │ ├── statusbar_resize.gif │ │ │ │ │ │ │ ├── strikethrough.gif │ │ │ │ │ │ │ ├── sub.gif │ │ │ │ │ │ │ ├── sup.gif │ │ │ │ │ │ │ ├── table.gif │ │ │ │ │ │ │ ├── table_delete_col.gif │ │ │ │ │ │ │ ├── table_delete_row.gif │ │ │ │ │ │ │ ├── table_insert_col_after.gif │ │ │ │ │ │ │ ├── table_insert_col_before.gif │ │ │ │ │ │ │ ├── table_insert_row_after.gif │ │ │ │ │ │ │ ├── table_insert_row_before.gif │ │ │ │ │ │ │ ├── underline.gif │ │ │ │ │ │ │ ├── underline_fr.gif │ │ │ │ │ │ │ ├── underline_ru.gif │ │ │ │ │ │ │ ├── undo.gif │ │ │ │ │ │ │ ├── unlink.gif │ │ │ │ │ │ │ ├── visualaid.gif │ │ │ │ │ │ │ └── xp │ │ │ │ │ │ │ │ ├── tab_bg.gif │ │ │ │ │ │ │ │ ├── tab_end.gif │ │ │ │ │ │ │ │ ├── tab_sel_bg.gif │ │ │ │ │ │ │ │ ├── tab_sel_end.gif │ │ │ │ │ │ │ │ └── tabs_bg.gif │ │ │ │ │ │ │ ├── jscripts │ │ │ │ │ │ │ ├── about.js │ │ │ │ │ │ │ ├── anchor.js │ │ │ │ │ │ │ ├── charmap.js │ │ │ │ │ │ │ ├── color_picker.js │ │ │ │ │ │ │ ├── image.js │ │ │ │ │ │ │ ├── link.js │ │ │ │ │ │ │ └── source_editor.js │ │ │ │ │ │ │ ├── langs │ │ │ │ │ │ │ └── en.js │ │ │ │ │ │ │ ├── link.htm │ │ │ │ │ │ │ └── source_editor.htm │ │ │ │ │ ├── tiny_mce.js │ │ │ │ │ ├── tiny_mce_gzip.php │ │ │ │ │ ├── tiny_mce_popup.js │ │ │ │ │ ├── utils │ │ │ │ │ │ ├── form_utils.js │ │ │ │ │ │ ├── mctabs.js │ │ │ │ │ │ └── validate.js │ │ │ │ │ └── wp-mce-help.php │ │ │ │ └── tw-sack.js │ │ │ ├── kses.php │ │ │ ├── links.php │ │ │ ├── locale.php │ │ │ ├── pluggable-functions.php │ │ │ ├── registration-functions.php │ │ │ ├── rss-functions.php │ │ │ ├── streams.php │ │ │ ├── template-functions-author.php │ │ │ ├── template-functions-category.php │ │ │ ├── template-functions-general.php │ │ │ ├── template-functions-links.php │ │ │ ├── template-functions-post.php │ │ │ ├── template-loader.php │ │ │ ├── vars.php │ │ │ ├── version.php │ │ │ ├── wp-db.php │ │ │ └── wp-l10n.php │ │ ├── wp-links-opml.php │ │ ├── wp-login.php │ │ ├── wp-mail.php │ │ ├── wp-pass.php │ │ ├── wp-rdf.php │ │ ├── wp-register.php │ │ ├── wp-rss.php │ │ ├── wp-rss2.php │ │ ├── wp-settings.php │ │ ├── wp-trackback.php │ │ └── xmlrpc.php │ ├── wordpress1 │ │ ├── index.php │ │ ├── wp-blog-header.php │ │ ├── wp-commentsrss2.php │ │ ├── wp-config.php │ │ ├── wp-content │ │ │ ├── index.php │ │ │ ├── plugins │ │ │ │ ├── akismet │ │ │ │ │ └── akismet.php │ │ │ │ ├── hello.php │ │ │ │ └── wp-db-backup.php │ │ │ └── themes │ │ │ │ ├── classic │ │ │ │ ├── comments-popup.php │ │ │ │ ├── comments.php │ │ │ │ ├── footer.php │ │ │ │ ├── header.php │ │ │ │ ├── index.php │ │ │ │ ├── screenshot.png │ │ │ │ ├── sidebar.php │ │ │ │ └── style.css │ │ │ │ └── default │ │ │ │ ├── 404.php │ │ │ │ ├── archive.php │ │ │ │ ├── archives.php │ │ │ │ ├── attachment.php │ │ │ │ ├── comments-popup.php │ │ │ │ ├── comments.php │ │ │ │ ├── footer.php │ │ │ │ ├── functions.php │ │ │ │ ├── header.php │ │ │ │ ├── images │ │ │ │ ├── audio.jpg │ │ │ │ ├── header-img.php │ │ │ │ ├── kubrickbg.jpg │ │ │ │ ├── kubrickbgcolor.jpg │ │ │ │ ├── kubrickbgwide.jpg │ │ │ │ ├── kubrickfooter.jpg │ │ │ │ └── kubrickheader.jpg │ │ │ │ ├── index.php │ │ │ │ ├── links.php │ │ │ │ ├── page.php │ │ │ │ ├── screenshot.png │ │ │ │ ├── search.php │ │ │ │ ├── searchform.php │ │ │ │ ├── sidebar.php │ │ │ │ ├── single.php │ │ │ │ └── style.css │ │ ├── wp-includes │ │ │ ├── comment-functions.php │ │ │ ├── default-filters.php │ │ │ ├── functions.php │ │ │ ├── template-loader.php │ │ │ └── wp-db.php │ │ └── wp-settings.php │ ├── wordpress2 │ │ ├── wp-admin │ │ │ ├── admin-db.php │ │ │ └── import │ │ │ │ └── textpattern.php │ │ ├── wp-commentsrss2.php │ │ ├── wp-config.php │ │ ├── wp-includes │ │ │ ├── functions-post.php │ │ │ ├── functions.php │ │ │ └── wp-db.php │ │ └── wp-settings.php │ ├── wordpress3 │ │ ├── wp-admin │ │ │ ├── admin-db.php │ │ │ ├── import │ │ │ │ └── textpattern.php │ │ │ └── update-links.php │ │ ├── wp-commentsrss2.php │ │ ├── wp-config.php │ │ ├── wp-includes │ │ │ ├── functions-post.php │ │ │ ├── functions.php │ │ │ └── wp-db.php │ │ ├── wp-login.php │ │ └── wp-settings.php │ └── wordpress4 │ │ ├── wp-commentsrss2.php │ │ ├── wp-config.php │ │ ├── wp-includes │ │ └── wp-db.php │ │ ├── wp-login.php │ │ └── wp-settings.php ├── todo │ ├── clone.php │ ├── functions22.php │ ├── nat_ref_objs.php │ ├── property_taint.php │ └── unset.php ├── twig │ ├── twig1.js │ └── twig1.php └── vulntestsuite │ ├── CWE_78__GET__CAST-func_settype_int__find_size-concatenation_simple_quote.php │ ├── CWE_78__GET__CAST-func_settype_int__find_size-interpretation_simple_quote.php │ ├── CWE_78__GET__func_FILTER-CLEANING-magic_quotes_filter__cat-interpretation_simple_quote.php │ ├── CWE_78__GET__func_FILTER-VALIDATION-number_float_filter__find_size-concatenation_simple_quote.php │ ├── CWE_78__GET__no_sanitizing__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__GET__ternary_white_list__find_size-interpretation_simple_quote.php │ ├── CWE_78__POST__CAST-cast_float__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__CAST-cast_int__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__CAST-cast_int_sort_of2__find_size-concatenation_simple_quote.php │ ├── CWE_78__POST__CAST-func_settype_float__find_size-concatenation_simple_quote.php │ ├── CWE_78__POST__func_FILTER-CLEANING-number_int_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__func_FILTER-VALIDATION-number_float_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__POST__func_FILTER-VALIDATION-number_int_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__POST__func_FILTER-VALIDATION-number_int_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__func_htmlentities__cat-interpretation_simple_quote.php │ ├── CWE_78__POST__func_intval__find_size-concatenation_simple_quote.php │ ├── CWE_78__POST__func_preg_match-letters_numbers__cat-concatenation_simple_quote.php │ ├── CWE_78__POST__func_preg_match-letters_numbers__cat-interpretation_simple_quote.php │ ├── CWE_78__POST__func_preg_match-letters_numbers__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__func_preg_match-letters_numbers__ls-concatenation_simple_quote.php │ ├── CWE_78__POST__func_preg_match-no_filtering__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__func_preg_match-only_numbers__find_size-interpretation_simple_quote.php │ ├── CWE_78__POST__func_preg_replace__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__POST__ternary_white_list__find_size-concatenation_simple_quote.php │ ├── CWE_78__SESSION__func_FILTER-CLEANING-number_float_filter__find_size-concatenation_simple_quote.php │ ├── CWE_78__SESSION__func_FILTER-CLEANING-number_float_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__SESSION__func_FILTER-VALIDATION-number_float_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__SESSION__func_addslashes__ls-concatenation_simple_quote.php │ ├── CWE_78__SESSION__func_floatval__find_size-interpretation_simple_quote.php │ ├── CWE_78__SESSION__func_htmlspecialchars__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__SESSION__func_intval__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__SESSION__func_preg_match-letters_numbers__ls-interpretation_simple_quote.php │ ├── CWE_78__SESSION__func_preg_match-letters_numbers__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__SESSION__func_preg_replace__cat-interpretation_simple_quote.php │ ├── CWE_78__SESSION__ternary_white_list__cat-interpretation_simple_quote.php │ ├── CWE_78__SESSION__whitelist_using_array__ls-interpretation_simple_quote.php │ ├── CWE_78__array-GET__CAST-cast_int_sort_of2__find_size-interpretation_simple_quote.php │ ├── CWE_78__array-GET__CAST-cast_int_sort_of__find_size-interpretation_simple_quote.php │ ├── CWE_78__array-GET__CAST-cast_int_sort_of__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__array-GET__CAST-func_settype_float__find_size-interpretation_simple_quote.php │ ├── CWE_78__array-GET__func_FILTER-CLEANING-magic_quotes_filter__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__array-GET__func_intval__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__array-GET__func_mysql_real_escape_string__find_size-concatenation_simple_quote.php │ ├── CWE_78__array-GET__func_mysql_real_escape_string__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__array-GET__func_preg_replace__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__array-GET__whitelist_using_array__cat-concatenation_simple_quote.php │ ├── CWE_78__array-GET__whitelist_using_array__find_size-concatenation_simple_quote.php │ ├── CWE_78__backticks__CAST-func_settype_int__find_size-interpretation_simple_quote.php │ ├── CWE_78__backticks__func_FILTER-CLEANING-email_filter__ls-concatenation_simple_quote.php │ ├── CWE_78__backticks__func_FILTER-CLEANING-magic_quotes_filter__ls-concatenation_simple_quote.php │ ├── CWE_78__backticks__func_FILTER-CLEANING-magic_quotes_filter__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__backticks__func_htmlspecialchars__cat-interpretation_simple_quote.php │ ├── CWE_78__backticks__func_htmlspecialchars__ls-concatenation_simple_quote.php │ ├── CWE_78__backticks__func_preg_match-only_numbers__find_size-concatenation_simple_quote.php │ ├── CWE_78__backticks__func_preg_replace2__ls-concatenation_simple_quote.php │ ├── CWE_78__backticks__func_preg_replace__cat-concatenation_simple_quote.php │ ├── CWE_78__backticks__no_sanitizing__find_size-concatenation_simple_quote.php │ ├── CWE_78__backticks__ternary_white_list__ls-concatenation_simple_quote.php │ ├── CWE_78__backticks__ternary_white_list__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__backticks__whitelist_using_array__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__exec__CAST-cast_int__find_size-interpretation_simple_quote.php │ ├── CWE_78__exec__func_FILTER-CLEANING-email_filter__cat-interpretation_simple_quote.php │ ├── CWE_78__exec__func_FILTER-VALIDATION-number_float_filter__find_size-concatenation_simple_quote.php │ ├── CWE_78__exec__func_addslashes__ls-concatenation_simple_quote.php │ ├── CWE_78__exec__func_htmlspecialchars__cat-interpretation_simple_quote.php │ ├── CWE_78__exec__whitelist_using_array__cat-interpretation_simple_quote.php │ ├── CWE_78__exec__whitelist_using_array__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__fopen__CAST-cast_int__find_size-concatenation_simple_quote.php │ ├── CWE_78__fopen__CAST-cast_int_sort_of2__find_size-concatenation_simple_quote.php │ ├── CWE_78__fopen__CAST-cast_int_sort_of__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__fopen__func_FILTER-CLEANING-email_filter__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__fopen__func_FILTER-CLEANING-magic_quotes_filter__ls-interpretation_simple_quote.php │ ├── CWE_78__fopen__func_addslashes__cat-concatenation_simple_quote.php │ ├── CWE_78__fopen__func_floatval__find_size-concatenation_simple_quote.php │ ├── CWE_78__fopen__func_htmlentities__cat-concatenation_simple_quote.php │ ├── CWE_78__fopen__func_preg_match-letters_numbers__cat-interpretation_simple_quote.php │ ├── CWE_78__fopen__func_preg_match-no_filtering__cat-interpretation_simple_quote.php │ ├── CWE_78__fopen__func_preg_match-no_filtering__ls-interpretation_simple_quote.php │ ├── CWE_78__fopen__func_preg_match-no_filtering__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__fopen__func_preg_replace2__cat-interpretation_simple_quote.php │ ├── CWE_78__fopen__no_sanitizing__find_size-concatenation_simple_quote.php │ ├── CWE_78__fopen__ternary_white_list__find_size-concatenation_simple_quote.php │ ├── CWE_78__fopen__whitelist_using_array__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-Array__CAST-func_settype_float__find_size-concatenation_simple_quote.php │ ├── CWE_78__object-Array__func_FILTER-CLEANING-number_int_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-Array__func_escapeshellarg__cat-interpretation_simple_quote.php │ ├── CWE_78__object-Array__func_htmlentities__ls-concatenation_simple_quote.php │ ├── CWE_78__object-Array__func_preg_match-only_letters__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-Array__func_preg_match-only_letters__ls-concatenation_simple_quote.php │ ├── CWE_78__object-Array__func_preg_match-only_numbers__find_size-concatenation_simple_quote.php │ ├── CWE_78__object-Array__func_preg_match-only_numbers__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-Array__func_preg_replace__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-Array__ternary_white_list__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-Array__whitelist_using_array__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-Array__whitelist_using_array__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-classicGet__func_FILTER-CLEANING-email_filter__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-classicGet__func_FILTER-VALIDATION-number_int_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-classicGet__func_htmlentities__cat-concatenation_simple_quote.php │ ├── CWE_78__object-classicGet__func_htmlentities__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-classicGet__func_htmlspecialchars__cat-concatenation_simple_quote.php │ ├── CWE_78__object-classicGet__func_htmlspecialchars__cat-interpretation_simple_quote.php │ ├── CWE_78__object-classicGet__func_htmlspecialchars__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-classicGet__func_preg_match-only_letters__ls-concatenation_simple_quote.php │ ├── CWE_78__object-classicGet__func_preg_match-only_numbers__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-classicGet__func_preg_replace__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-classicGet__ternary_white_list__cat-concatenation_simple_quote.php │ ├── CWE_78__object-classicGet__ternary_white_list__cat-interpretation_simple_quote.php │ ├── CWE_78__object-classicGet__whitelist_using_array__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-directGet__CAST-cast_int__find_size-concatenation_simple_quote.php │ ├── CWE_78__object-directGet__func_FILTER-CLEANING-number_int_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-directGet__func_addslashes__ls-concatenation_simple_quote.php │ ├── CWE_78__object-directGet__func_addslashes__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-directGet__func_escapeshellarg__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-directGet__func_intval__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-directGet__func_mysql_real_escape_string__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-directGet__func_preg_match-letters_numbers__cat-concatenation_simple_quote.php │ ├── CWE_78__object-directGet__func_preg_match-no_filtering__cat-concatenation_simple_quote.php │ ├── CWE_78__object-directGet__func_preg_match-only_letters__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-directGet__func_preg_replace__ls-concatenation_simple_quote.php │ ├── CWE_78__object-directGet__ternary_white_list__cat-interpretation_simple_quote.php │ ├── CWE_78__object-directGet__ternary_white_list__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-directGet__whitelist_using_array__cat-concatenation_simple_quote.php │ ├── CWE_78__object-directGet__whitelist_using_array__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-directGet__whitelist_using_array__ls-concatenation_simple_quote.php │ ├── CWE_78__object-indexArray__CAST-cast_int__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-indexArray__CAST-cast_int_sort_of__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__CAST-func_settype_int__find_size-concatenation_simple_quote.php │ ├── CWE_78__object-indexArray__func_FILTER-CLEANING-email_filter__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__func_FILTER-CLEANING-magic_quotes_filter__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__func_FILTER-VALIDATION-number_float_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__func_addslashes__ls-interpretation_simple_quote.php │ ├── CWE_78__object-indexArray__func_escapeshellarg__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__func_floatval__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-indexArray__func_htmlspecialchars__cat-concatenation_simple_quote.php │ ├── CWE_78__object-indexArray__func_htmlspecialchars__ls-interpretation_simple_quote.php │ ├── CWE_78__object-indexArray__func_htmlspecialchars__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__func_intval__find_size-interpretation_simple_quote.php │ ├── CWE_78__object-indexArray__func_preg_match-no_filtering__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__func_preg_replace2__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__ternary_white_list__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__ternary_white_list__ls-concatenation_simple_quote.php │ ├── CWE_78__object-indexArray__whitelist_using_array__cat-concatenation_simple_quote.php │ ├── CWE_78__object-indexArray__whitelist_using_array__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__object-indexArray__whitelist_using_array__ls-interpretation_simple_quote.php │ ├── CWE_78__popen__CAST-cast_int_sort_of__find_size-concatenation_simple_quote.php │ ├── CWE_78__popen__CAST-cast_int_sort_of__find_size-interpretation_simple_quote.php │ ├── CWE_78__popen__func_FILTER-CLEANING-email_filter__cat-interpretation_simple_quote.php │ ├── CWE_78__popen__func_FILTER-CLEANING-email_filter__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__popen__func_FILTER-CLEANING-magic_quotes_filter__ls-concatenation_simple_quote.php │ ├── CWE_78__popen__func_FILTER-CLEANING-number_float_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__popen__func_FILTER-CLEANING-number_float_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__popen__func_FILTER-VALIDATION-number_float_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__popen__func_escapeshellarg__cat-interpretation_simple_quote.php │ ├── CWE_78__popen__func_floatval__find_size-concatenation_simple_quote.php │ ├── CWE_78__popen__func_intval__find_size-concatenation_simple_quote.php │ ├── CWE_78__popen__func_intval__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__popen__func_preg_match-no_filtering__ls-interpretation_simple_quote.php │ ├── CWE_78__popen__func_preg_match-no_filtering__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__popen__func_preg_match-only_letters__ls-concatenation_simple_quote.php │ ├── CWE_78__popen__func_preg_replace2__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__popen__no_sanitizing__cat-interpretation_simple_quote.php │ ├── CWE_78__popen__ternary_white_list__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__popen__whitelist_using_array__ls-interpretation_simple_quote.php │ ├── CWE_78__proc_open__CAST-cast_int__find_size-concatenation_simple_quote.php │ ├── CWE_78__proc_open__CAST-func_settype_float__find_size-concatenation_simple_quote.php │ ├── CWE_78__proc_open__func_FILTER-CLEANING-email_filter__ls-interpretation_simple_quote.php │ ├── CWE_78__proc_open__func_FILTER-CLEANING-number_float_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__func_FILTER-CLEANING-number_int_filter__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__func_FILTER-VALIDATION-number_int_filter__find_size-concatenation_simple_quote.php │ ├── CWE_78__proc_open__func_escapeshellarg__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__func_escapeshellarg__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__func_mysql_real_escape_string__find_size-concatenation_simple_quote.php │ ├── CWE_78__proc_open__func_preg_match-letters_numbers__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__func_preg_match-no_filtering__cat-concatenation_simple_quote.php │ ├── CWE_78__proc_open__func_preg_match-no_filtering__ls-concatenation_simple_quote.php │ ├── CWE_78__proc_open__func_preg_match-no_filtering__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__func_preg_replace__ls-interpretation_simple_quote.php │ ├── CWE_78__proc_open__func_preg_replace__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__proc_open__no_sanitizing__ls-concatenation_simple_quote.php │ ├── CWE_78__proc_open__whitelist_using_array__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__CAST-cast_int_sort_of__find_size-interpretation_simple_quote.php │ ├── CWE_78__shell_exec__func_FILTER-CLEANING-email_filter__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__func_FILTER-VALIDATION-number_float_filter__find_size-concatenation_simple_quote.php │ ├── CWE_78__shell_exec__func_FILTER-VALIDATION-number_int_filter__find_size-concatenation_simple_quote.php │ ├── CWE_78__shell_exec__func_FILTER-VALIDATION-number_int_filter__find_size-interpretation_simple_quote.php │ ├── CWE_78__shell_exec__func_escapeshellarg__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__func_htmlentities__cat-concatenation_simple_quote.php │ ├── CWE_78__shell_exec__func_htmlentities__ls-interpretation_simple_quote.php │ ├── CWE_78__shell_exec__func_htmlspecialchars__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__func_preg_match-no_filtering__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__func_preg_match-only_letters__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__func_preg_replace2__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__ternary_white_list__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__ternary_white_list__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__whitelist_using_array__find_size-concatenation_simple_quote.php │ ├── CWE_78__shell_exec__whitelist_using_array__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__shell_exec__whitelist_using_array__ls-interpretation_simple_quote.php │ ├── CWE_78__system__CAST-func_settype_float__find_size-concatenation_simple_quote.php │ ├── CWE_78__system__CAST-func_settype_int__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_FILTER-CLEANING-email_filter__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_FILTER-CLEANING-magic_quotes_filter__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_addslashes__cat-interpretation_simple_quote.php │ ├── CWE_78__system__func_escapeshellarg__cat-interpretation_simple_quote.php │ ├── CWE_78__system__func_htmlentities__cat-concatenation_simple_quote.php │ ├── CWE_78__system__func_mysql_real_escape_string__find_size-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_preg_match-only_letters__cat-interpretation_simple_quote.php │ ├── CWE_78__system__func_preg_match-only_letters__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_preg_match-only_letters__ls-concatenation_simple_quote.php │ ├── CWE_78__system__func_preg_match-only_letters__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_preg_replace2__cat-interpretation_simple_quote.php │ ├── CWE_78__system__func_preg_replace2__ls-sprintf_%s_simple_quote.php │ ├── CWE_78__system__func_preg_replace__cat-concatenation_simple_quote.php │ ├── CWE_78__system__func_preg_replace__ls-concatenation_simple_quote.php │ ├── CWE_78__system__whitelist_using_array__cat-concatenation_simple_quote.php │ ├── CWE_78__unserialize__func_FILTER-CLEANING-full_special_chars_filter__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__unserialize__func_FILTER-CLEANING-special_chars_filter__cat-interpretation_simple_quote.php │ ├── CWE_78__unserialize__func_FILTER-VALIDATION-email_filter__cat-concatenation_simple_quote.php │ ├── CWE_78__unserialize__no_sanitizing__cat-sprintf_%s_simple_quote.php │ ├── CWE_78__unserialize__no_sanitizing__find_size-concatenation_simple_quote.php │ ├── CWE_78__unserialize__no_sanitizing__find_size-sprintf_%s_simple_quote.php │ ├── CWE_862_Fopen__GET__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__GET__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__GET__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__GET__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__POST__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__POST__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__POST__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__POST__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__SESSION__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__SESSION__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__array-GET__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__array-GET__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__backticks__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__backticks__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__backticks__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__backticks__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__exec__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__exec__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__exec__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__exec__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__fopen__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__fopen__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__fopen__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__fopen__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__object-Array__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__object-Array__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__object-Array__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__object-Array__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__object-classicGet__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__object-classicGet__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__object-classicGet__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__object-classicGet__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__object-directGet__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__object-directGet__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__object-directGet__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__object-directGet__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__object-indexArray__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__object-indexArray__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__object-indexArray__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__object-indexArray__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__popen__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__popen__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__popen__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__popen__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__proc_open__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__proc_open__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__proc_open__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__proc_open__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__shell_exec__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__shell_exec__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__shell_exec__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__shell_exec__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__system__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__system__no_sanitizing__fopen.php │ ├── CWE_862_Fopen__system__ternary_white_list__fopen.php │ ├── CWE_862_Fopen__system__whitelist_using_array__fopen.php │ ├── CWE_862_Fopen__unserialize__func_preg_replace__fopen.php │ ├── CWE_862_Fopen__unserialize__no_sanitizing__fopen.php │ ├── CWE_862_SQL__GET__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__GET__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__GET__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__GET__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__GET__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__GET__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__GET__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__GET__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__GET__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__GET__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__GET__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__POST__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__POST__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__POST__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__POST__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__POST__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__POST__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__POST__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__POST__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__POST__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__POST__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__POST__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__SESSION__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__SESSION__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__SESSION__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__SESSION__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__SESSION__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__SESSION__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__SESSION__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__SESSION__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__SESSION__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__SESSION__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__SESSION__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__array-GET__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__array-GET__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__array-GET__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__array-GET__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__array-GET__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__array-GET__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__array-GET__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__array-GET__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__array-GET__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__array-GET__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__array-GET__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__backticks__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__backticks__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__backticks__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__backticks__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__backticks__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__backticks__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__backticks__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__backticks__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__backticks__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__backticks__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__backticks__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__exec__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__exec__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__exec__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__exec__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__exec__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__exec__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__exec__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__exec__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__exec__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__exec__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__exec__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__fopen__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__fopen__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__fopen__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__fopen__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__fopen__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__fopen__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__fopen__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__fopen__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__fopen__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__fopen__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__fopen__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-Array__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-Array__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-Array__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-Array__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-Array__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-Array__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-Array__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-Array__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-Array__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-Array__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-Array__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-classicGet__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-classicGet__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-classicGet__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-classicGet__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-classicGet__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-classicGet__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-classicGet__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-classicGet__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-classicGet__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-classicGet__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-classicGet__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-directGet__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-directGet__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-directGet__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-directGet__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-directGet__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-directGet__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-directGet__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-directGet__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-directGet__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-directGet__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-directGet__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-indexArray__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-indexArray__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-indexArray__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-indexArray__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-indexArray__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-indexArray__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-indexArray__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-indexArray__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__object-indexArray__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__object-indexArray__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__object-indexArray__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__popen__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__popen__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__popen__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__popen__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__popen__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__popen__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__popen__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__popen__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__popen__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__popen__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__popen__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__proc_open__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__proc_open__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__proc_open__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__proc_open__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__proc_open__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__proc_open__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__proc_open__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__proc_open__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__proc_open__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__proc_open__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__proc_open__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__shell_exec__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__shell_exec__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__shell_exec__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__shell_exec__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__shell_exec__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__shell_exec__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__shell_exec__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__shell_exec__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__shell_exec__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__shell_exec__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__shell_exec__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__system__CAST-cast_int__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__system__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__system__CAST-cast_int__prepared_query-right_verification.php │ ├── CWE_862_SQL__system__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__system__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__system__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__system__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__system__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__system__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__system__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__system__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__system__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__system__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__system__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__system__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__system__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__system__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__system__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__system__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__system__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__unserialize__CAST-cast_int__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__unserialize__CAST-cast_int__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__unserialize__ESAPI__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__ESAPI__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__unserialize__ESAPI__prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__ESAPI__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__unserialize__Indirect_reference__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__Indirect_reference__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__unserialize__Indirect_reference__prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__Indirect_reference__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__unserialize__ternary_white_list__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__ternary_white_list__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__unserialize__ternary_white_list__prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__ternary_white_list__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_SQL__unserialize__whitelist_using_array__non_prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__whitelist_using_array__prepared_query-no_right_verification.php │ ├── CWE_862_SQL__unserialize__whitelist_using_array__prepared_query-right_verification.php │ ├── CWE_862_SQL__unserialize__whitelist_using_array__select_from_where-interpretation_simple_quote.php │ ├── CWE_862_XPath__GET__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__GET__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__GET__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__GET__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__GET__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__POST__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__POST__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__POST__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__POST__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__POST__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__SESSION__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__SESSION__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__SESSION__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__SESSION__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__SESSION__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__array-GET__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__array-GET__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__array-GET__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__array-GET__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__array-GET__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__backticks__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__backticks__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__backticks__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__backticks__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__backticks__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__exec__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__exec__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__exec__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__exec__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__exec__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__fopen__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__fopen__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__fopen__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__fopen__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__fopen__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-Array__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__object-Array__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__object-Array__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-Array__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__object-Array__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-classicGet__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__object-classicGet__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__object-classicGet__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-classicGet__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__object-classicGet__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-directGet__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__object-directGet__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__object-directGet__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-directGet__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__object-directGet__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-indexArray__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__object-indexArray__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__object-indexArray__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__object-indexArray__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__object-indexArray__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__popen__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__popen__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__popen__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__popen__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__popen__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__proc_open__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__proc_open__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__proc_open__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__proc_open__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__proc_open__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__shell_exec__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__shell_exec__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__shell_exec__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__shell_exec__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__shell_exec__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__system__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__system__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__system__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__system__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__system__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__unserialize__CAST-cast_int__concatenation-right_verification.php │ ├── CWE_862_XPath__unserialize__ternary_white_list__concatenation-right_verification.php │ ├── CWE_862_XPath__unserialize__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_862_XPath__unserialize__whitelist_using_array__concatenation-right_verification.php │ ├── CWE_862_XPath__unserialize__whitelist_using_array__username_at-concatenation_simple_quote.php │ ├── CWE_89__GET__CAST-cast_float_sort_of__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__GET__CAST-cast_int__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__GET__CAST-cast_int__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__GET__CAST-cast_int_sort_of2__multiple_select-interpretation_simple_quote.php │ ├── CWE_89__GET__CAST-func_settype_float__multiple_select-sprintf_%d.php │ ├── CWE_89__GET__CAST-func_settype_float__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__GET__func_FILTER-CLEANING-number_int_filter__select_from_where-sprintf_%u.php │ ├── CWE_89__GET__func_FILTER-VALIDATION-number_int_filter__multiple_AS-sprintf_%u.php │ ├── CWE_89__GET__func_intval__multiple_AS-sprintf_%d_simple_quote.php │ ├── CWE_89__GET__func_intval__select_from_where-sprintf_%d.php │ ├── CWE_89__GET__no_sanitizing__join-sprintf_%s_simple_quote.php │ ├── CWE_89__GET__no_sanitizing__multiple_AS-interpretation.php │ ├── CWE_89__GET__ternary_white_list__select_from_where-sprintf_%u.php │ ├── CWE_89__POST__CAST-cast_float_sort_of__multiple_select-interpretation_simple_quote.php │ ├── CWE_89__POST__CAST-cast_int__multiple_AS-concatenation.php │ ├── CWE_89__POST__CAST-cast_int__multiple_AS-sprintf_%d.php │ ├── CWE_89__POST__CAST-cast_int__multiple_select-concatenation.php │ ├── CWE_89__POST__CAST-cast_int_sort_of__multiple_select-interpretation.php │ ├── CWE_89__POST__CAST-func_settype_float__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__POST__func_FILTER-CLEANING-number_int_filter__select_from_where-sprintf_%d.php │ ├── CWE_89__POST__func_FILTER-VALIDATION-number_int_filter__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__POST__func_floatval__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__POST__func_preg_match-only_numbers__select_from_where-concatenation.php │ ├── CWE_89__SESSION__CAST-cast_int_sort_of2__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__SESSION__CAST-cast_int_sort_of__multiple_AS-concatenation_simple_quote.php │ ├── CWE_89__SESSION__CAST-cast_int_sort_of__select_from_where-sprintf_%u.php │ ├── CWE_89__SESSION__func_FILTER-CLEANING-number_int_filter__multiple_AS-sprintf_%d.php │ ├── CWE_89__SESSION__func_FILTER-CLEANING-number_int_filter__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__SESSION__func_FILTER-CLEANING-number_int_filter__multiple_select-sprintf_%d.php │ ├── CWE_89__SESSION__func_FILTER-VALIDATION-number_float_filter__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__SESSION__func_FILTER-VALIDATION-number_int_filter__select_from_where-concatenation.php │ ├── CWE_89__SESSION__func_floatval__multiple_select-concatenation_simple_quote.php │ ├── CWE_89__SESSION__func_floatval__select_from_where-sprintf_%d.php │ ├── CWE_89__SESSION__ternary_white_list__multiple_select-concatenation.php │ ├── CWE_89__SESSION__whitelist_using_array_from__select_from-sprintf_%s_simple_quote.php │ ├── CWE_89__array-GET__CAST-cast_float_sort_of__multiple_select-interpretation.php │ ├── CWE_89__array-GET__CAST-cast_float_sort_of__select_from_where-concatenation_simple_quote.php │ ├── CWE_89__array-GET__CAST-cast_int__multiple_AS-concatenation.php │ ├── CWE_89__array-GET__CAST-cast_int_sort_of2__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__array-GET__CAST-cast_int_sort_of__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__array-GET__CAST-func_settype_float__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__array-GET__func_FILTER-VALIDATION-number_int_filter__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__array-GET__func_floatval__multiple_select-interpretation_simple_quote.php │ ├── CWE_89__array-GET__func_htmlentities__join-concatenation_simple_quote.php │ ├── CWE_89__array-GET__func_intval__multiple_select-sprintf_%u.php │ ├── CWE_89__array-GET__func_intval__select_from_where-concatenation.php │ ├── CWE_89__backticks__CAST-cast_int_sort_of__multiple_AS-concatenation.php │ ├── CWE_89__backticks__func_FILTER-CLEANING-number_float_filter__multiple_select-concatenation_simple_quote.php │ ├── CWE_89__backticks__func_FILTER-CLEANING-number_int_filter__select_from_where-sprintf_%d.php │ ├── CWE_89__backticks__func_FILTER-VALIDATION-number_int_filter__multiple_AS-concatenation.php │ ├── CWE_89__backticks__func_floatval__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__backticks__func_htmlspecialchars__join-concatenation_simple_quote.php │ ├── CWE_89__backticks__func_mysql_real_escape_string__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__backticks__func_preg_match-no_filtering__join-concatenation_simple_quote.php │ ├── CWE_89__backticks__func_preg_match-only_numbers__select_from_where-sprintf_%u_simple_quote.php │ ├── CWE_89__backticks__whitelist_using_array__join-interpretation_simple_quote.php │ ├── CWE_89__exec__CAST-cast_int__multiple_AS-sprintf_%u.php │ ├── CWE_89__exec__CAST-func_settype_int__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__exec__func_FILTER-CLEANING-email_filter__select_from-concatenation_simple_quote.php │ ├── CWE_89__exec__func_FILTER-CLEANING-number_int_filter__select_from_where-sprintf_%u_simple_quote.php │ ├── CWE_89__exec__func_floatval__multiple_select-sprintf_%u.php │ ├── CWE_89__exec__func_intval__select_from_where-concatenation.php │ ├── CWE_89__exec__func_mysql_real_escape_string__multiple_select-sprintf_%d.php │ ├── CWE_89__exec__no_sanitizing__multiple_AS-concatenation_simple_quote.php │ ├── CWE_89__exec__no_sanitizing__multiple_select-interpretation_simple_quote.php │ ├── CWE_89__exec__whitelist_using_array__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__fopen__CAST-cast_float__multiple_select-concatenation.php │ ├── CWE_89__fopen__CAST-cast_int_sort_of2__select_from_where-sprintf_%u_simple_quote.php │ ├── CWE_89__fopen__func_FILTER-VALIDATION-number_float_filter__multiple_AS-concatenation.php │ ├── CWE_89__fopen__func_FILTER-VALIDATION-number_float_filter__multiple_select-sprintf_%s_simple_quote.php │ ├── CWE_89__fopen__func_preg_replace__select_from-sprintf_%s_simple_quote.php │ ├── CWE_89__fopen__ternary_white_list__multiple_AS-sprintf_%u.php │ ├── CWE_89__fopen__ternary_white_list__select_from_where-concatenation.php │ ├── CWE_89__fopen__whitelist_using_array__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__object-Array__CAST-cast_int__multiple_select-concatenation_simple_quote.php │ ├── CWE_89__object-Array__CAST-cast_int__multiple_select-sprintf_%d.php │ ├── CWE_89__object-Array__CAST-cast_int_sort_of__multiple_AS-sprintf_%d.php │ ├── CWE_89__object-Array__CAST-cast_int_sort_of__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__object-Array__CAST-func_settype_float__multiple_AS-sprintf_%u.php │ ├── CWE_89__object-Array__CAST-func_settype_float__select_from_where-sprintf_%u_simple_quote.php │ ├── CWE_89__object-Array__func_FILTER-CLEANING-magic_quotes_filter__join-sprintf_%s_simple_quote.php │ ├── CWE_89__object-Array__func_FILTER-CLEANING-number_float_filter__multiple_AS-sprintf_%u.php │ ├── CWE_89__object-Array__func_floatval__multiple_AS-sprintf_%d_simple_quote.php │ ├── CWE_89__object-Array__func_floatval__multiple_select-concatenation_simple_quote.php │ ├── CWE_89__object-Array__func_floatval__multiple_select-sprintf_%d.php │ ├── CWE_89__object-Array__func_floatval__select_from_where-interpretation.php │ ├── CWE_89__object-Array__func_intval__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__object-classicGet__CAST-cast_float__multiple_AS-interpretation.php │ ├── CWE_89__object-classicGet__CAST-cast_int__select_from_where-sprintf_%u.php │ ├── CWE_89__object-classicGet__CAST-func_settype_float__multiple_AS-interpretation.php │ ├── CWE_89__object-classicGet__CAST-func_settype_int__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__object-classicGet__CAST-func_settype_int__multiple_select-concatenation.php │ ├── CWE_89__object-classicGet__CAST-func_settype_int__select_from_where-sprintf_%d.php │ ├── CWE_89__object-classicGet__func_FILTER-CLEANING-number_int_filter__multiple_select-concatenation.php │ ├── CWE_89__object-classicGet__func_FILTER-VALIDATION-number_float_filter__multiple_select-concatenation_simple_quote.php │ ├── CWE_89__object-classicGet__func_FILTER-VALIDATION-number_float_filter__multiple_select-interpretation.php │ ├── CWE_89__object-classicGet__func_floatval__multiple_select-sprintf_%d.php │ ├── CWE_89__object-classicGet__func_htmlentities__join-sprintf_%s_simple_quote.php │ ├── CWE_89__object-classicGet__func_preg_match-only_numbers__multiple_AS-interpretation.php │ ├── CWE_89__object-classicGet__func_preg_match-only_numbers__multiple_select-interpretation.php │ ├── CWE_89__object-classicGet__ternary_white_list__join-sprintf_%s_simple_quote.php │ ├── CWE_89__object-classicGet__ternary_white_list__select_from-interpretation_simple_quote.php │ ├── CWE_89__object-directGet__CAST-cast_float_sort_of__select_from_where-concatenation.php │ ├── CWE_89__object-directGet__CAST-cast_int__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__object-directGet__CAST-cast_int_sort_of2__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__object-directGet__CAST-cast_int_sort_of__multiple_select-sprintf_%u.php │ ├── CWE_89__object-directGet__func_FILTER-CLEANING-email_filter__join-interpretation_simple_quote.php │ ├── CWE_89__object-directGet__func_FILTER-CLEANING-number_float_filter__select_from_where-concatenation.php │ ├── CWE_89__object-directGet__func_FILTER-VALIDATION-number_int_filter__multiple_select-interpretation_simple_quote.php │ ├── CWE_89__object-directGet__func_mysql_real_escape_string__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__object-directGet__func_mysql_real_escape_string__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__object-directGet__no_sanitizing__select_from-sprintf_%s_simple_quote.php │ ├── CWE_89__object-indexArray__CAST-cast_float_sort_of__multiple_select-interpretation_simple_quote.php │ ├── CWE_89__object-indexArray__CAST-cast_int__multiple_select-sprintf_%d_simple_quote.php │ ├── CWE_89__object-indexArray__CAST-cast_int_sort_of__multiple_select-sprintf_%s_simple_quote.php │ ├── CWE_89__object-indexArray__CAST-func_settype_float__multiple_AS-interpretation_simple_quote.php │ ├── CWE_89__object-indexArray__func_FILTER-CLEANING-email_filter__select_from-sprintf_%s_simple_quote.php │ ├── CWE_89__object-indexArray__func_FILTER-VALIDATION-number_float_filter__select_from_where-sprintf_%s_simple_quote.php │ ├── CWE_89__object-indexArray__func_preg_match-no_filtering__join-concatenation_simple_quote.php │ ├── CWE_89__object-indexArray__func_preg_match-only_numbers__multiple_select-sprintf_%d_simple_quote.php │ ├── CWE_89__object-indexArray__whitelist_using_array__join-interpretation_simple_quote.php │ ├── CWE_89__object-indexArray__whitelist_using_array__select_from-interpretation_simple_quote.php │ ├── CWE_89__popen__CAST-cast_float__multiple_select-sprintf_%d_simple_quote.php │ ├── CWE_89__popen__CAST-cast_float__select_from_where-sprintf_%d_simple_quote.php │ ├── CWE_89__popen__CAST-func_settype_int__multiple_select-concatenation_simple_quote.php │ ├── CWE_89__popen__func_FILTER-CLEANING-email_filter__select_from-concatenation_simple_quote.php │ ├── CWE_89__popen__func_FILTER-CLEANING-number_float_filter__select_from_where-interpretation.php │ ├── CWE_89__popen__func_floatval__multiple_select-concatenation.php │ ├── CWE_89__popen__func_intval__select_from_where-concatenation.php │ ├── CWE_89__popen__func_mysql_real_escape_string__multiple_AS-sprintf_%d.php │ ├── CWE_89__popen__func_preg_match-no_filtering__join-sprintf_%s_simple_quote.php │ ├── CWE_89__popen__ternary_white_list__multiple_AS-concatenation_simple_quote.php │ ├── CWE_89__popen__ternary_white_list__multiple_select-sprintf_%u.php │ ├── CWE_89__proc_open__CAST-cast_float__multiple_select-concatenation.php │ ├── CWE_89__proc_open__CAST-cast_float_sort_of__multiple_select-sprintf_%s_simple_quote.php │ ├── CWE_89__proc_open__CAST-cast_int__select_from_where-interpretation.php │ ├── CWE_89__proc_open__CAST-cast_int_sort_of2__multiple_select-sprintf_%d.php │ ├── CWE_89__proc_open__CAST-cast_int_sort_of__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__proc_open__func_FILTER-VALIDATION-number_float_filter__select_from_where-interpretation.php │ ├── CWE_89__proc_open__func_intval__select_from_where-concatenation.php │ ├── CWE_89__proc_open__func_intval__select_from_where-sprintf_%d_simple_quote.php │ ├── CWE_89__proc_open__func_preg_match-only_numbers__select_from_where-concatenation.php │ ├── CWE_89__proc_open__whitelist_using_array__multiple_AS-sprintf_%d_simple_quote.php │ ├── CWE_89__proc_open__whitelist_using_array__select_from_where-sprintf_%d.php │ ├── CWE_89__shell_exec__CAST-cast_float_sort_of__multiple_select-sprintf_%d.php │ ├── CWE_89__shell_exec__CAST-cast_int_sort_of2__multiple_AS-sprintf_%u.php │ ├── CWE_89__shell_exec__CAST-cast_int_sort_of__select_from_where-interpretation_simple_quote.php │ ├── CWE_89__shell_exec__func_FILTER-CLEANING-number_float_filter__multiple_AS-interpretation.php │ ├── CWE_89__shell_exec__func_FILTER-CLEANING-number_int_filter__multiple_select-sprintf_%d.php │ ├── CWE_89__shell_exec__func_FILTER-VALIDATION-number_float_filter__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__shell_exec__func_FILTER-VALIDATION-number_int_filter__multiple_select-sprintf_%u.php │ ├── CWE_89__shell_exec__func_intval__multiple_AS-sprintf_%d_simple_quote.php │ ├── CWE_89__shell_exec__func_mysql_real_escape_string__multiple_select-interpretation.php │ ├── CWE_89__shell_exec__no_sanitizing__multiple_AS-concatenation_simple_quote.php │ ├── CWE_89__shell_exec__no_sanitizing__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__shell_exec__ternary_white_list__select_from_where-sprintf_%d_simple_quote.php │ ├── CWE_89__shell_exec__whitelist_using_array__multiple_select-sprintf_%d.php │ ├── CWE_89__system__CAST-cast_float__multiple_AS-interpretation_simple_quote.php │ ├── CWE_89__system__CAST-func_settype_float__multiple_select-sprintf_%u_simple_quote.php │ ├── CWE_89__system__CAST-func_settype_float__select_from_where-interpretation_simple_quote.php │ ├── CWE_89__system__func_FILTER-CLEANING-email_filter__select_from-sprintf_%s_simple_quote.php │ ├── CWE_89__system__func_FILTER-CLEANING-magic_quotes_filter__select_from-concatenation_simple_quote.php │ ├── CWE_89__system__func_FILTER-VALIDATION-number_float_filter__multiple_AS-sprintf_%d.php │ ├── CWE_89__system__func_preg_match-no_filtering__join-interpretation_simple_quote.php │ ├── CWE_89__system__func_preg_match-only_numbers__select_from_where-sprintf_%u_simple_quote.php │ ├── CWE_89__system__func_preg_replace2__join-concatenation_simple_quote.php │ ├── CWE_89__system__no_sanitizing__multiple_AS-concatenation.php │ ├── CWE_89__system__ternary_white_list__multiple_select-sprintf_%d_simple_quote.php │ ├── CWE_89__system__ternary_white_list__multiple_select-sprintf_%u.php │ ├── CWE_89__system__whitelist_using_array__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__system__whitelist_using_array__multiple_select-sprintf_%d_simple_quote.php │ ├── CWE_89__unserialize__CAST-cast_float_sort_of__multiple_AS-sprintf_%u.php │ ├── CWE_89__unserialize__CAST-cast_int__multiple_AS-interpretation.php │ ├── CWE_89__unserialize__CAST-cast_int__multiple_AS-sprintf_%u_simple_quote.php │ ├── CWE_89__unserialize__CAST-func_settype_float__multiple_select-concatenation.php │ ├── CWE_89__unserialize__func_FILTER-CLEANING-number_float_filter__select_from_where-sprintf_%d.php │ ├── CWE_89__unserialize__func_FILTER-CLEANING-number_int_filter__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__unserialize__func_FILTER-CLEANING-number_int_filter__select_from_where-concatenation_simple_quote.php │ ├── CWE_89__unserialize__func_FILTER-VALIDATION-number_int_filter__multiple_select-interpretation.php │ ├── CWE_89__unserialize__func_floatval__multiple_AS-sprintf_%s_simple_quote.php │ ├── CWE_89__unserialize__func_intval__multiple_select-sprintf_%u.php │ ├── CWE_89__unserialize__func_intval__select_from_where-sprintf_%u.php │ ├── CWE_89__unserialize__func_mysql_real_escape_string__multiple_AS-concatenation.php │ ├── CWE_89__unserialize__func_mysql_real_escape_string__multiple_select-concatenation.php │ ├── CWE_89__unserialize__func_preg_match-only_letters__select_from-interpretation_simple_quote.php │ ├── CWE_89__unserialize__func_preg_match-only_numbers__multiple_select-concatenation.php │ ├── CWE_89__unserialize__no_sanitizing__select_from_where-concatenation_simple_quote.php │ ├── CWE_89__unserialize__no_sanitizing__select_from_where-interpretation_simple_quote.php │ ├── CWE_89__unserialize__ternary_white_list__select_from_where-sprintf_%u.php │ ├── CWE_89__unserialize__whitelist_using_array__multiple_select-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_FILTER-CLEANING-email_filter__name-concatenation_simple_quote.php │ ├── CWE_90__GET__func_FILTER-CLEANING-email_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__GET__func_FILTER-CLEANING-special_chars_filter__not_name-interpretation_simple_quote.php │ ├── CWE_90__GET__func_FILTER-CLEANING-special_chars_filter__userByMail-concatenation_simple_quote.php │ ├── CWE_90__GET__func_addslashes__name-interpretation_simple_quote.php │ ├── CWE_90__GET__func_addslashes__name-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_addslashes__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_htmlentities__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_htmlentities__userByMail-concatenation_simple_quote.php │ ├── CWE_90__GET__func_htmlentities__userByMail-interpretation_simple_quote.php │ ├── CWE_90__GET__func_htmlentities__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_htmlspecialchars__not_name-interpretation_simple_quote.php │ ├── CWE_90__GET__func_pg_escape_literal__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_preg_match-letters_numbers__name-concatenation_simple_quote.php │ ├── CWE_90__GET__func_preg_match-letters_numbers__name-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_preg_match-letters_numbers__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__func_preg_match-only_letters__not_name-concatenation_simple_quote.php │ ├── CWE_90__GET__func_preg_replace_ldap_char_white_list__userByMail-concatenation_simple_quote.php │ ├── CWE_90__GET__func_preg_replace_ldap_char_white_list__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__no_sanitizing__not_name-interpretation_simple_quote.php │ ├── CWE_90__GET__whitelist_using_array__name-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__whitelist_using_array__userByCN-concatenation_simple_quote.php │ ├── CWE_90__GET__whitelist_using_array__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__GET__whitelist_using_array__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__func_FILTER-CLEANING-full_special_chars_filter__name-interpretation_simple_quote.php │ ├── CWE_90__POST__func_FILTER-CLEANING-full_special_chars_filter__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__func_FILTER-CLEANING-full_special_chars_filter__userByMail-concatenation_simple_quote.php │ ├── CWE_90__POST__func_FILTER-CLEANING-special_chars_filter__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__func_addslashes__name-interpretation_simple_quote.php │ ├── CWE_90__POST__func_addslashes__userByMail-concatenation_simple_quote.php │ ├── CWE_90__POST__func_htmlentities__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__func_pg_escape_literal__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__func_preg_match-only_letters__name-interpretation_simple_quote.php │ ├── CWE_90__POST__func_preg_match-only_letters__userByCN-concatenation_simple_quote.php │ ├── CWE_90__POST__func_preg_match-only_letters__userByCN-interpretation_simple_quote.php │ ├── CWE_90__POST__func_preg_replace_ldap_char_white_list__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__no_sanitizing__name-interpretation_simple_quote.php │ ├── CWE_90__POST__no_sanitizing__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__POST__no_sanitizing__userByCN-interpretation_simple_quote.php │ ├── CWE_90__POST__no_sanitizing__userByMail-concatenation_simple_quote.php │ ├── CWE_90__POST__ternary_white_list__not_name-interpretation_simple_quote.php │ ├── CWE_90__POST__whitelist_using_array__userByMail-concatenation_simple_quote.php │ ├── CWE_90__SESSION__func_FILTER-CLEANING-full_special_chars_filter__userByCN-interpretation_simple_quote.php │ ├── CWE_90__SESSION__func_FILTER-CLEANING-special_chars_filter__name-concatenation_simple_quote.php │ ├── CWE_90__SESSION__func_pg_escape_literal__not_name-interpretation_simple_quote.php │ ├── CWE_90__SESSION__func_preg_match-letters_numbers__name-sprintf_%s_simple_quote.php │ ├── CWE_90__SESSION__func_preg_match-only_letters__name-concatenation_simple_quote.php │ ├── CWE_90__SESSION__func_preg_replace_ldap_char_white_list__name-sprintf_%s_simple_quote.php │ ├── CWE_90__SESSION__func_preg_replace_ldap_char_white_list__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__SESSION__func_preg_replace_ldap_char_white_list__userByCN-interpretation_simple_quote.php │ ├── CWE_90__SESSION__func_str_replace_ldap_char_black_list__userByMail-concatenation_simple_quote.php │ ├── CWE_90__SESSION__ternary_white_list__not_name-concatenation_simple_quote.php │ ├── CWE_90__SESSION__ternary_white_list__userByCN-interpretation_simple_quote.php │ ├── CWE_90__SESSION__whitelist_using_array__not_name-concatenation_simple_quote.php │ ├── CWE_90__SESSION__whitelist_using_array__userByCN-concatenation_simple_quote.php │ ├── CWE_90__array-GET__func_FILTER-CLEANING-full_special_chars_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__array-GET__func_FILTER-CLEANING-special_chars_filter__userByMail-interpretation_simple_quote.php │ ├── CWE_90__array-GET__func_preg_match-letters_numbers__userByMail-concatenation_simple_quote.php │ ├── CWE_90__array-GET__func_str_replace_ldap_char_black_list__name-interpretation_simple_quote.php │ ├── CWE_90__array-GET__ternary_white_list__not_name-concatenation_simple_quote.php │ ├── CWE_90__array-GET__ternary_white_list__userByCN-interpretation_simple_quote.php │ ├── CWE_90__array-GET__ternary_white_list__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__array-GET__ternary_white_list__userByMail-interpretation_simple_quote.php │ ├── CWE_90__backticks__func_pg_escape_literal__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__backticks__func_preg_match-letters_numbers__name-sprintf_%s_simple_quote.php │ ├── CWE_90__backticks__ternary_white_list__name-interpretation_simple_quote.php │ ├── CWE_90__backticks__ternary_white_list__not_name-concatenation_simple_quote.php │ ├── CWE_90__backticks__ternary_white_list__userByMail-concatenation_simple_quote.php │ ├── CWE_90__backticks__ternary_white_list__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__func_FILTER-CLEANING-full_special_chars_filter__userByMail-interpretation_simple_quote.php │ ├── CWE_90__exec__func_FILTER-CLEANING-full_special_chars_filter__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__func_FILTER-CLEANING-special_chars_filter__not_name-interpretation_simple_quote.php │ ├── CWE_90__exec__func_FILTER-CLEANING-special_chars_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__exec__func_FILTER-CLEANING-special_chars_filter__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__func_pg_escape_literal__not_name-interpretation_simple_quote.php │ ├── CWE_90__exec__func_pg_escape_literal__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__func_preg_match-letters_numbers__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__func_preg_match-letters_numbers__userByCN-interpretation_simple_quote.php │ ├── CWE_90__exec__func_preg_match-letters_numbers__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__func_preg_match-only_letters__userByCN-interpretation_simple_quote.php │ ├── CWE_90__exec__func_preg_replace_ldap_char_white_list__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__exec__ternary_white_list__userByMail-interpretation_simple_quote.php │ ├── CWE_90__exec__whitelist_using_array__not_name-concatenation_simple_quote.php │ ├── CWE_90__fopen__func_FILTER-CLEANING-special_chars_filter__not_name-concatenation_simple_quote.php │ ├── CWE_90__fopen__func_FILTER-CLEANING-special_chars_filter__not_name-interpretation_simple_quote.php │ ├── CWE_90__fopen__func_addslashes__name-interpretation_simple_quote.php │ ├── CWE_90__fopen__func_addslashes__userByCN-interpretation_simple_quote.php │ ├── CWE_90__fopen__func_addslashes__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__func_addslashes__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__func_htmlentities__name-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__func_htmlspecialchars__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__func_htmlspecialchars__userByMail-interpretation_simple_quote.php │ ├── CWE_90__fopen__func_pg_escape_literal__name-concatenation_simple_quote.php │ ├── CWE_90__fopen__func_preg_match-letters_numbers__not_name-interpretation_simple_quote.php │ ├── CWE_90__fopen__func_preg_match-only_letters__name-concatenation_simple_quote.php │ ├── CWE_90__fopen__func_preg_match-only_letters__not_name-concatenation_simple_quote.php │ ├── CWE_90__fopen__func_preg_replace_ldap_char_white_list__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__func_preg_replace_ldap_char_white_list__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__no_sanitizing__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__fopen__whitelist_using_array__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_FILTER-CLEANING-email_filter__name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_FILTER-CLEANING-email_filter__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_FILTER-CLEANING-email_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-Array__func_FILTER-CLEANING-special_chars_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-Array__func_addslashes__userByCN-interpretation_simple_quote.php │ ├── CWE_90__object-Array__func_htmlentities__not_name-concatenation_simple_quote.php │ ├── CWE_90__object-Array__func_htmlentities__userByMail-concatenation_simple_quote.php │ ├── CWE_90__object-Array__func_pg_escape_literal__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_pg_escape_literal__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-Array__func_preg_match-only_letters__name-interpretation_simple_quote.php │ ├── CWE_90__object-Array__func_preg_match-only_letters__name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_preg_match-only_letters__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_preg_match-only_letters__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-Array__func_preg_replace_ldap_char_white_list__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-Array__whitelist_using_array__name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-classicGet__func_FILTER-CLEANING-email_filter__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__func_FILTER-CLEANING-full_special_chars_filter__userByMail-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__func_FILTER-CLEANING-special_chars_filter__userByMail-concatenation_simple_quote.php │ ├── CWE_90__object-classicGet__func_addslashes__name-concatenation_simple_quote.php │ ├── CWE_90__object-classicGet__func_addslashes__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-classicGet__func_preg_match-letters_numbers__name-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__func_preg_match-letters_numbers__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-classicGet__func_preg_match-no_filtering__name-concatenation_simple_quote.php │ ├── CWE_90__object-classicGet__func_preg_match-no_filtering__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__object-classicGet__func_preg_replace_ldap_char_white_list__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__ternary_white_list__name-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__ternary_white_list__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__whitelist_using_array__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-classicGet__whitelist_using_array__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__func_FILTER-CLEANING-email_filter__not_name-concatenation_simple_quote.php │ ├── CWE_90__object-directGet__func_FILTER-CLEANING-email_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-directGet__func_FILTER-CLEANING-full_special_chars_filter__userByCN-interpretation_simple_quote.php │ ├── CWE_90__object-directGet__func_FILTER-CLEANING-full_special_chars_filter__userByMail-interpretation_simple_quote.php │ ├── CWE_90__object-directGet__func_FILTER-CLEANING-special_chars_filter__name-concatenation_simple_quote.php │ ├── CWE_90__object-directGet__func_addslashes__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__func_htmlspecialchars__name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__func_htmlspecialchars__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-directGet__func_htmlspecialchars__userByCN-interpretation_simple_quote.php │ ├── CWE_90__object-directGet__func_htmlspecialchars__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__func_pg_escape_literal__name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__func_pg_escape_literal__userByMail-interpretation_simple_quote.php │ ├── CWE_90__object-directGet__func_preg_match-letters_numbers__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-directGet__func_preg_match-no_filtering__not_name-concatenation_simple_quote.php │ ├── CWE_90__object-directGet__func_preg_match-no_filtering__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-directGet__func_preg_match-no_filtering__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__no_sanitizing__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__no_sanitizing__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__ternary_white_list__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__object-directGet__ternary_white_list__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-indexArray__func_FILTER-CLEANING-full_special_chars_filter__userByCN-interpretation_simple_quote.php │ ├── CWE_90__object-indexArray__func_FILTER-CLEANING-special_chars_filter__userByMail-interpretation_simple_quote.php │ ├── CWE_90__object-indexArray__func_htmlentities__not_name-concatenation_simple_quote.php │ ├── CWE_90__object-indexArray__func_htmlentities__userByCN-interpretation_simple_quote.php │ ├── CWE_90__object-indexArray__func_htmlentities__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__object-indexArray__func_htmlentities__userByMail-interpretation_simple_quote.php │ ├── CWE_90__object-indexArray__func_htmlspecialchars__not_name-interpretation_simple_quote.php │ ├── CWE_90__object-indexArray__func_htmlspecialchars__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__object-indexArray__func_pg_escape_literal__userByMail-interpretation_simple_quote.php │ ├── CWE_90__object-indexArray__func_preg_match-letters_numbers__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__object-indexArray__func_preg_replace_ldap_char_white_list__userByCN-concatenation_simple_quote.php │ ├── CWE_90__object-indexArray__no_sanitizing__name-concatenation_simple_quote.php │ ├── CWE_90__object-indexArray__ternary_white_list__not_name-interpretation_simple_quote.php │ ├── CWE_90__popen__func_FILTER-CLEANING-email_filter__name-concatenation_simple_quote.php │ ├── CWE_90__popen__func_FILTER-CLEANING-email_filter__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__func_FILTER-CLEANING-full_special_chars_filter__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__func_htmlspecialchars__not_name-interpretation_simple_quote.php │ ├── CWE_90__popen__func_htmlspecialchars__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__func_htmlspecialchars__userByMail-interpretation_simple_quote.php │ ├── CWE_90__popen__func_preg_match-letters_numbers__name-concatenation_simple_quote.php │ ├── CWE_90__popen__func_preg_match-letters_numbers__userByCN-concatenation_simple_quote.php │ ├── CWE_90__popen__func_preg_match-letters_numbers__userByCN-interpretation_simple_quote.php │ ├── CWE_90__popen__func_preg_match-letters_numbers__userByMail-concatenation_simple_quote.php │ ├── CWE_90__popen__func_preg_match-letters_numbers__userByMail-interpretation_simple_quote.php │ ├── CWE_90__popen__func_preg_match-no_filtering__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__func_preg_match-only_letters__name-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__func_preg_match-only_letters__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__no_sanitizing__name-interpretation_simple_quote.php │ ├── CWE_90__popen__no_sanitizing__userByCN-interpretation_simple_quote.php │ ├── CWE_90__popen__no_sanitizing__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__whitelist_using_array__name-sprintf_%s_simple_quote.php │ ├── CWE_90__popen__whitelist_using_array__userByCN-concatenation_simple_quote.php │ ├── CWE_90__popen__whitelist_using_array__userByMail-concatenation_simple_quote.php │ ├── CWE_90__popen__whitelist_using_array__userByMail-interpretation_simple_quote.php │ ├── CWE_90__proc_open__func_FILTER-CLEANING-email_filter__name-concatenation_simple_quote.php │ ├── CWE_90__proc_open__func_FILTER-CLEANING-full_special_chars_filter__name-sprintf_%s_simple_quote.php │ ├── CWE_90__proc_open__func_FILTER-CLEANING-special_chars_filter__userByCN-concatenation_simple_quote.php │ ├── CWE_90__proc_open__func_FILTER-CLEANING-special_chars_filter__userByCN-interpretation_simple_quote.php │ ├── CWE_90__proc_open__func_addslashes__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__proc_open__func_htmlentities__not_name-concatenation_simple_quote.php │ ├── CWE_90__proc_open__func_htmlentities__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__proc_open__func_pg_escape_literal__not_name-interpretation_simple_quote.php │ ├── CWE_90__proc_open__func_pg_escape_literal__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__proc_open__func_preg_match-letters_numbers__name-interpretation_simple_quote.php │ ├── CWE_90__proc_open__func_preg_match-no_filtering__not_name-interpretation_simple_quote.php │ ├── CWE_90__proc_open__func_preg_replace_ldap_char_white_list__name-concatenation_simple_quote.php │ ├── CWE_90__proc_open__func_preg_replace_ldap_char_white_list__userByMail-concatenation_simple_quote.php │ ├── CWE_90__proc_open__no_sanitizing__name-sprintf_%s_simple_quote.php │ ├── CWE_90__proc_open__no_sanitizing__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__proc_open__ternary_white_list__userByMail-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__func_FILTER-CLEANING-full_special_chars_filter__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_FILTER-CLEANING-special_chars_filter__name-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__func_FILTER-CLEANING-special_chars_filter__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_FILTER-CLEANING-special_chars_filter__userByMail-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__func_addslashes__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_addslashes__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_htmlentities__name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_htmlentities__userByCN-interpretation_simple_quote.php │ ├── CWE_90__shell_exec__func_preg_match-letters_numbers__name-interpretation_simple_quote.php │ ├── CWE_90__shell_exec__func_preg_match-letters_numbers__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_preg_match-no_filtering__name-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__func_preg_match-only_letters__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_preg_match-only_letters__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__func_preg_replace_ldap_char_white_list__not_name-interpretation_simple_quote.php │ ├── CWE_90__shell_exec__no_sanitizing__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__shell_exec__ternary_white_list__name-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__ternary_white_list__not_name-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__ternary_white_list__userByMail-interpretation_simple_quote.php │ ├── CWE_90__shell_exec__whitelist_using_array__name-concatenation_simple_quote.php │ ├── CWE_90__shell_exec__whitelist_using_array__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__system__func_FILTER-CLEANING-full_special_chars_filter__name-interpretation_simple_quote.php │ ├── CWE_90__system__func_FILTER-CLEANING-full_special_chars_filter__not_name-interpretation_simple_quote.php │ ├── CWE_90__system__func_FILTER-CLEANING-full_special_chars_filter__userByMail-concatenation_simple_quote.php │ ├── CWE_90__system__func_FILTER-CLEANING-special_chars_filter__name-concatenation_simple_quote.php │ ├── CWE_90__system__func_addslashes__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__system__func_htmlentities__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__system__func_htmlspecialchars__userByCN-concatenation_simple_quote.php │ ├── CWE_90__system__func_htmlspecialchars__userByMail-interpretation_simple_quote.php │ ├── CWE_90__system__func_pg_escape_literal__name-concatenation_simple_quote.php │ ├── CWE_90__system__func_pg_escape_literal__userByCN-sprintf_%s_simple_quote.php │ ├── CWE_90__system__func_preg_match-letters_numbers__not_name-interpretation_simple_quote.php │ ├── CWE_90__system__func_preg_match-no_filtering__userByMail-interpretation_simple_quote.php │ ├── CWE_90__system__no_sanitizing__not_name-concatenation_simple_quote.php │ ├── CWE_90__system__ternary_white_list__name-concatenation_simple_quote.php │ ├── CWE_90__system__ternary_white_list__not_name-concatenation_simple_quote.php │ ├── CWE_90__system__ternary_white_list__userByMail-sprintf_%s_simple_quote.php │ ├── CWE_90__unserialize__func_FILTER-CLEANING-email_filter__not_name-concatenation_simple_quote.php │ ├── CWE_90__unserialize__func_FILTER-CLEANING-magic_quotes_filter__name-concatenation_simple_quote.php │ ├── CWE_90__unserialize__func_addslashes__userByCN-concatenation_simple_quote.php │ ├── CWE_90__unserialize__func_htmlspecialchars__name-interpretation_simple_quote.php │ ├── CWE_90__unserialize__func_htmlspecialchars__not_name-interpretation_simple_quote.php │ ├── CWE_90__unserialize__func_htmlspecialchars__userByCN-interpretation_simple_quote.php │ ├── CWE_90__unserialize__func_pg_escape_string__not_name-interpretation_simple_quote.php │ ├── CWE_90__unserialize__func_preg_match-no_filtering__not_name-sprintf_%s_simple_quote.php │ ├── CWE_90__unserialize__func_preg_replace2__not_name-concatenation_simple_quote.php │ ├── CWE_90__unserialize__func_preg_replace2__userByMail-interpretation_simple_quote.php │ ├── CWE_90__unserialize__func_preg_replace__userByMail-concatenation_simple_quote.php │ ├── CWE_91__GET__CAST-cast_float__ID_test-interpretation_simple_quote.php │ ├── CWE_91__GET__CAST-cast_int_sort_of2__ID_test-interpretation.php │ ├── CWE_91__GET__CAST-cast_int_sort_of__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__GET__func_FILTER-CLEANING-number_float_filter__ID_at-sprintf_%u.php │ ├── CWE_91__GET__func_FILTER-VALIDATION-number_float_filter__ID_test-sprintf_%d_simple_quote.php │ ├── CWE_91__GET__func_FILTER-VALIDATION-number_int_filter__ID_test-concatenation_simple_quote.php │ ├── CWE_91__GET__func_intval__ID_test-concatenation.php │ ├── CWE_91__GET__func_preg_match-letters_numbers__username-sprintf_%s_simple_quote.php │ ├── CWE_91__GET__ternary_white_list__ID_test-interpretation_simple_quote.php │ ├── CWE_91__POST__CAST-cast_float__ID_at-sprintf_%u.php │ ├── CWE_91__POST__CAST-cast_float_sort_of__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__POST__func_FILTER-CLEANING-number_int_filter__ID_test-concatenation_simple_quote.php │ ├── CWE_91__POST__func_floatval__ID_test-interpretation_simple_quote.php │ ├── CWE_91__POST__func_preg_match-only_letters__username_text-concatenation_simple_quote.php │ ├── CWE_91__POST__func_preg_match-only_numbers__ID_test-concatenation_simple_quote.php │ ├── CWE_91__POST__func_preg_match-only_numbers__ID_test-interpretation.php │ ├── CWE_91__POST__ternary_white_list__username_at-interpretation_simple_quote.php │ ├── CWE_91__POST__whitelist_using_array__ID_test-concatenation.php │ ├── CWE_91__SESSION__CAST-cast_int_sort_of2__ID_test-concatenation_simple_quote.php │ ├── CWE_91__SESSION__CAST-func_settype_int__ID_test-interpretation.php │ ├── CWE_91__SESSION__func_floatval__ID_test-sprintf_%d_simple_quote.php │ ├── CWE_91__SESSION__func_preg_replace2__username_text-interpretation_simple_quote.php │ ├── CWE_91__SESSION__func_preg_replace__data-concatenation_simple_quote.php │ ├── CWE_91__SESSION__func_preg_replace__username-concatenation_simple_quote.php │ ├── CWE_91__SESSION__func_preg_replace__username-interpretation_simple_quote.php │ ├── CWE_91__SESSION__func_preg_replace__username-sprintf_%s_simple_quote.php │ ├── CWE_91__SESSION__object-func_mysql_real_escape_string__username_at-interpretation_simple_quote.php │ ├── CWE_91__SESSION__whitelist_using_array__username-sprintf_%s_simple_quote.php │ ├── CWE_91__array-GET__CAST-cast_int_sort_of2__ID_at-sprintf_%u.php │ ├── CWE_91__array-GET__func_FILTER-CLEANING-number_float_filter__ID_test-interpretation.php │ ├── CWE_91__array-GET__func_FILTER-CLEANING-number_float_filter__ID_test-sprintf_%d_simple_quote.php │ ├── CWE_91__array-GET__func_FILTER-CLEANING-number_int_filter__ID_test-interpretation_simple_quote.php │ ├── CWE_91__array-GET__func_FILTER-VALIDATION-number_float_filter__ID_at-sprintf_%u_simple_quote.php │ ├── CWE_91__array-GET__func_floatval__ID_test-interpretation_simple_quote.php │ ├── CWE_91__array-GET__func_mysql_real_escape_string__ID_at-sprintf_%u.php │ ├── CWE_91__array-GET__func_preg_match-only_letters__data-interpretation_simple_quote.php │ ├── CWE_91__array-GET__object-func_mysql_real_escape_string__username_text-sprintf_%s_simple_quote.php │ ├── CWE_91__backticks__CAST-func_settype_int__ID_test-sprintf_%d.php │ ├── CWE_91__backticks__func_FILTER-VALIDATION-number_int_filter__ID_test-interpretation.php │ ├── CWE_91__backticks__ternary_white_list__username-sprintf_%s_simple_quote.php │ ├── CWE_91__exec__func_FILTER-VALIDATION-number_int_filter__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__exec__func_htmlspecialchars__username-concatenation_simple_quote.php │ ├── CWE_91__fopen__CAST-cast_float_sort_of__ID_test-sprintf_%d.php │ ├── CWE_91__fopen__CAST-cast_int__ID_test-sprintf_%d_simple_quote.php │ ├── CWE_91__fopen__func_FILTER-CLEANING-number_float_filter__ID_at-sprintf_%u_simple_quote.php │ ├── CWE_91__fopen__func_floatval__ID_at-sprintf_%u.php │ ├── CWE_91__fopen__ternary_white_list__ID_test-concatenation_simple_quote.php │ ├── CWE_91__fopen__ternary_white_list__username-sprintf_%s_simple_quote.php │ ├── CWE_91__fopen__ternary_white_list__username_at-concatenation_simple_quote.php │ ├── CWE_91__fopen__whitelist_using_array__ID_test-interpretation_simple_quote.php │ ├── CWE_91__object-Array__CAST-cast_int__ID_test-concatenation_simple_quote.php │ ├── CWE_91__object-Array__CAST-cast_int__ID_test-interpretation_simple_quote.php │ ├── CWE_91__object-Array__CAST-cast_int__ID_test-sprintf_%d_simple_quote.php │ ├── CWE_91__object-Array__CAST-cast_int_sort_of__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__object-Array__func_FILTER-CLEANING-number_int_filter__ID_test-sprintf_%d.php │ ├── CWE_91__object-Array__func_intval__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__object-Array__func_preg_match-letters_numbers__data-interpretation_simple_quote.php │ ├── CWE_91__object-classicGet__CAST-cast_float__ID_test-interpretation.php │ ├── CWE_91__object-classicGet__func_FILTER-VALIDATION-number_float_filter__ID_test-concatenation_simple_quote.php │ ├── CWE_91__object-classicGet__func_FILTER-VALIDATION-number_int_filter__ID_test-interpretation_simple_quote.php │ ├── CWE_91__object-directGet__CAST-cast_int_sort_of__ID_test-concatenation.php │ ├── CWE_91__object-directGet__func_FILTER-CLEANING-number_float_filter__ID_test-concatenation.php │ ├── CWE_91__object-directGet__func_preg_match-only_letters__username_text-interpretation_simple_quote.php │ ├── CWE_91__object-directGet__whitelist_using_array__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__object-indexArray__CAST-func_settype_float__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__object-indexArray__CAST-func_settype_float__ID_test-sprintf_%d.php │ ├── CWE_91__object-indexArray__func_FILTER-VALIDATION-number_int_filter__ID_test-sprintf_%d.php │ ├── CWE_91__object-indexArray__func_preg_match-only_letters__username_text-interpretation_simple_quote.php │ ├── CWE_91__object-indexArray__func_preg_match-only_numbers__ID_test-concatenation.php │ ├── CWE_91__object-indexArray__ternary_white_list__data-sprintf_%s_simple_quote.php │ ├── CWE_91__object-indexArray__ternary_white_list__username_text-sprintf_%s_simple_quote.php │ ├── CWE_91__popen__func_FILTER-CLEANING-number_int_filter__ID_test-sprintf_%d_simple_quote.php │ ├── CWE_91__popen__func_FILTER-VALIDATION-number_int_filter__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__popen__whitelist_using_array__username_text-concatenation_simple_quote.php │ ├── CWE_91__proc_open__CAST-cast_int_sort_of__ID_at-sprintf_%s_simple_quote.php │ ├── CWE_91__proc_open__func_htmlspecialchars__username_text-interpretation_simple_quote.php │ ├── CWE_91__proc_open__func_intval__ID_at-sprintf_%u.php │ ├── CWE_91__proc_open__func_preg_match-only_letters__username_at-concatenation_simple_quote.php │ ├── CWE_91__proc_open__whitelist_using_array__data-concatenation_simple_quote.php │ ├── CWE_91__shell_exec__func_FILTER-CLEANING-number_int_filter__ID_at-sprintf_%u.php │ ├── CWE_91__shell_exec__func_preg_match-only_letters__username_text-interpretation_simple_quote.php │ ├── CWE_91__system__CAST-cast_int_sort_of2__ID_test-interpretation_simple_quote.php │ ├── CWE_91__system__CAST-cast_int_sort_of__ID_at-sprintf_%u.php │ ├── CWE_91__system__func_FILTER-CLEANING-number_int_filter__ID_test-sprintf_%d.php │ ├── CWE_91__system__func_FILTER-VALIDATION-number_float_filter__ID_at-sprintf_%u_simple_quote.php │ ├── CWE_91__system__func_FILTER-VALIDATION-number_int_filter__ID_at-sprintf_%u.php │ ├── CWE_91__system__func_htmlentities__username_at-sprintf_%s_simple_quote.php │ ├── CWE_91__system__func_preg_match-letters_numbers__username_text-sprintf_%s_simple_quote.php │ └── CWE_91__system__func_preg_match-only_letters__username-sprintf_%s_simple_quote.php └── testvulntestsuite.php /.devcontainer/devcontainer.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "progpilot-linux", 3 | "build": { 4 | "dockerfile": "Dockerfile" 5 | }, 6 | "remoteUser": "developer" 7 | } 8 | -------------------------------------------------------------------------------- /.gitattributes: -------------------------------------------------------------------------------- 1 | # All files are checked into the repo with LF 2 | * text=auto 3 | 4 | # These files are checked out using LF locally 5 | *.* eol=lf -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | articles/ 2 | builds/*.phar 3 | projects/tests/vendor 4 | projects/tests/composer.lock 5 | projects/tests/.phpunit.result.cache 6 | projects/example/vendor 7 | projects/example/composer.lock 8 | projects/example_config/vendor 9 | projects/example_config/composer.lock 10 | projects/phar/vendor 11 | projects/phar/composer.lock 12 | vendor/ 13 | composer.lock 14 | indent.sh 15 | .DS_Store -------------------------------------------------------------------------------- /docs/customcallgraph1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/docs/customcallgraph1.png -------------------------------------------------------------------------------- /grumphp.yml: -------------------------------------------------------------------------------- 1 | grumphp: 2 | process_timeout: 120 3 | tasks: 4 | phpcs: 5 | standard: PSR2 6 | metadata: 7 | priority: 300 8 | ignore_patterns: ["*/projects/tests/*"] 9 | -------------------------------------------------------------------------------- /package/src/progpilot/Inputs/MyCustomVariable.php: -------------------------------------------------------------------------------- 1 | input", "language": "php"} 4 | ] 5 | } 6 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/laravel/validators.json: -------------------------------------------------------------------------------- 1 | { 2 | "validators": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/symfony/sanitizers.json: -------------------------------------------------------------------------------- 1 | { 2 | "sanitizers": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/symfony/sinks.json: -------------------------------------------------------------------------------- 1 | { 2 | "sinks": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/symfony/sources.json: -------------------------------------------------------------------------------- 1 | { 2 | "sources": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/symfony/validators.json: -------------------------------------------------------------------------------- 1 | { 2 | "validators": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/wordpress/rules.json: -------------------------------------------------------------------------------- 1 | { 2 | "custom_rules": [ 3 | { 4 | "name": "wpdb", 5 | "description": "wpdb variable should be an object of type wpdb", 6 | "language": "php", 7 | "action": "DEFINE_OBJECT", 8 | "extra": "wpdb" 9 | } 10 | ] 11 | } 12 | 13 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/wordpress/sanitizers.json: -------------------------------------------------------------------------------- 1 | { 2 | "sanitizers": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/wordpress/sources.json: -------------------------------------------------------------------------------- 1 | { 2 | "sources": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /package/src/uptodate_data/php/frameworks/wordpress/validators.json: -------------------------------------------------------------------------------- 1 | { 2 | "validators": [ 3 | ] 4 | } 5 | -------------------------------------------------------------------------------- /projects/example/composer.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "progpilot/example", 3 | "description": "Example of use of Progpilot", 4 | "require": { 5 | "php": ">=7.4", 6 | "designsecurity/progpilot": "^1.1.1", 7 | "ircmaxell/php-cfg": "^0.7.0" 8 | } 9 | } 10 | -------------------------------------------------------------------------------- /projects/example/example1.php: -------------------------------------------------------------------------------- 1 | inputs->setFile("source_code1.php"); 9 | 10 | $analyzer->run($context); 11 | $results = $context->outputs->getResults(); 12 | 13 | var_dump($results); 14 | -------------------------------------------------------------------------------- /projects/example/example2.php: -------------------------------------------------------------------------------- 1 | inputs->setFile("source_code1.php"); 9 | $context->outputs->taintedFlow(true); 10 | 11 | $analyzer->run($context); 12 | $results = $context->outputs->getResults(); 13 | 14 | var_dump($results); 15 | -------------------------------------------------------------------------------- /projects/example/source_code1.php: -------------------------------------------------------------------------------- 1 | =7.4", 12 | "progpilot/package": "^1.1.1", 13 | "ircmaxell/php-cfg": "^0.7.0" 14 | } 15 | } 16 | -------------------------------------------------------------------------------- /projects/example_config/example.php: -------------------------------------------------------------------------------- 1 | setConfiguration("./configuration.yml"); 9 | 10 | $analyzer->run($context); 11 | $results = $context->outputs->getResults(); 12 | 13 | var_dump($results); 14 | -------------------------------------------------------------------------------- /projects/example_config/example1.php: -------------------------------------------------------------------------------- 1 | _message", "11", "xss"]] 6 | ] 7 | ]; 8 | -------------------------------------------------------------------------------- /projects/tests/resolve_includes.json: -------------------------------------------------------------------------------- 1 | {"include_failures":""} -------------------------------------------------------------------------------- /projects/tests/resolved_includes.json: -------------------------------------------------------------------------------- 1 | { 2 | "includes": 3 | [ 4 | { 5 | "line":11, 6 | "column":11, 7 | "source_file":"./tests/includes/simple5.php", 8 | "value":"simple5_include.php" 9 | } 10 | ] 11 | } 12 | -------------------------------------------------------------------------------- /projects/tests/run_config.php: -------------------------------------------------------------------------------- 1 | 1) { 6 | $context = new \progpilot\Context; 7 | $analyzer = new \progpilot\Analyzer; 8 | 9 | $context->setConfiguration($argv[1]); 10 | 11 | $analyzer->run($context); 12 | 13 | var_dump($context->outputs->getResults()); 14 | } 15 | -------------------------------------------------------------------------------- /projects/tests/testarray.php: -------------------------------------------------------------------------------- 1 | false); 8 | 9 | \progpilot\Utils::printArray($arr, $print_arr); 10 | 11 | $print_arr = ""; 12 | 13 | $arr = array("bla" => array("biouuu" => false)); 14 | 15 | \progpilot\Utils::printArray($arr, $print_arr); 16 | 17 | echo "$print_arr\n"; 18 | -------------------------------------------------------------------------------- /projects/tests/testcfg.php: -------------------------------------------------------------------------------- 1 | "; 6 | 7 | $context = new \progpilot\Context; 8 | $analyzer = new \progpilot\Analyzer; 9 | 10 | $context->setAnalyzeJs(false); 11 | $context->setAnalyzeIncludes(false); 12 | $context->inputs->setCode($code); 13 | $analyzer->run($context); 14 | 15 | $results = $context->outputs->getAst(); 16 | 17 | var_dump($results); 18 | -------------------------------------------------------------------------------- /projects/tests/testfile.php: -------------------------------------------------------------------------------- 1 | inputs->setFile("flow1.php"); 9 | $context->outputs->taintedFlow(true); 10 | 11 | $analyzer->run($context); 12 | $results = $context->outputs->getResults(); 13 | 14 | var_dump($results); 15 | -------------------------------------------------------------------------------- /projects/tests/testincludes.php: -------------------------------------------------------------------------------- 1 | inputs->setFile("./tests/includes/simple5.php"); 9 | 10 | $context->outputs->resolveIncludesFile("resolve_includes.json"); 11 | $context->outputs->resolveIncludes(true); 12 | 13 | //$context->inputs->set_includes("./tests/includes/resolved_includes_simple5.txt"); 14 | 15 | $analyzer->run($context); 16 | -------------------------------------------------------------------------------- /projects/tests/testonadd.php: -------------------------------------------------------------------------------- 1 | inputs->setFile("./tests/oop/simple1.php"); 9 | //$context->outputs->setOnAddResult("var_dump"); 10 | $var = function($result) { 11 | var_dump($result); 12 | }; 13 | $context->outputs->setOnAddResult($var); 14 | $analyzer->run($context); 15 | 16 | echo "nb files = '".$context->outputs->getCountAnalyzedFiles()."'\n"; 17 | 18 | -------------------------------------------------------------------------------- /projects/tests/testphpcfg.php: -------------------------------------------------------------------------------- 1 | 1) { 6 | $parser = new PHPCfg\Parser( 7 | (new PhpParser\ParserFactory)->create(PhpParser\ParserFactory::PREFER_PHP7) 8 | ); 9 | 10 | $script = $parser->parse(file_get_contents($argv[1]), $argv[1]); 11 | 12 | $dumper = new PHPCfg\Printer\Text(); 13 | echo $dumper->printScript($script); 14 | } 15 | 16 | -------------------------------------------------------------------------------- /projects/tests/tests/conditions/condition1.php: -------------------------------------------------------------------------------- 1 | 12 | 13 | -------------------------------------------------------------------------------- /projects/tests/tests/custom/cookies1.php: -------------------------------------------------------------------------------- 1 | false, "test" => "toto")); 4 | 5 | $a = new Twig_Environment($loader, array("autoescape" => true, "test" => "toto")); 6 | 7 | $a = new Twig_Environment($loader, array("autoescape" => "html", "test" => "toto")); 8 | 9 | $a = new Twig_Environment($loader); 10 | -------------------------------------------------------------------------------- /projects/tests/tests/custom/custom5.php: -------------------------------------------------------------------------------- 1 | time() + 2592000, 5 | 'path' => '/', 6 | 'domain' => '', 7 | //'secure' => FALSE, 8 | 'httponly' => true, 9 | 'samesite' => 'Lax' 10 | ); 11 | 12 | setcookie("token", "123", $options); 13 | -------------------------------------------------------------------------------- /projects/tests/tests/data/customvalidator2.php: -------------------------------------------------------------------------------- 1 | mysanitizer($_GET["p"]); 13 | 14 | echo "$ret"; 15 | 16 | mysql_query($ret); 17 | -------------------------------------------------------------------------------- /projects/tests/tests/data/sanitizer9.php: -------------------------------------------------------------------------------- 1 | boum; 6 | 7 | echo $data["boum"]; 8 | 9 | echo $data; 10 | 11 | print_r($data); 12 | 13 | print_r($data->boum); 14 | 15 | while($data = mysql_fetch_object($res)) 16 | { 17 | echo $data->boum; 18 | 19 | echo $data["boum"]; 20 | 21 | echo $data; 22 | 23 | print_r($data); 24 | 25 | print_r($data->boum); 26 | } 27 | -------------------------------------------------------------------------------- /projects/tests/tests/data/sink8.php: -------------------------------------------------------------------------------- 1 | xpath($query); 8 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source1.php: -------------------------------------------------------------------------------- 1 | member1 = $_GET["p"]; 10 | echo $inst->member1; 11 | 12 | echo $inst; 13 | 14 | echo $inst->member2; 15 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source12.php: -------------------------------------------------------------------------------- 1 | methodc1(); 6 | 7 | print("$var2"); 8 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source13.php: -------------------------------------------------------------------------------- 1 | fullname; 5 | } 6 | /* 7 | switch($baba) { 8 | case '1': 9 | $html = "case1"; 10 | break; 11 | case '2': 12 | $html = "case1"; 13 | break; 14 | } 15 | 16 | echo $html;*/ 17 | /* 18 | $row = mysql_fetch_object($result); 19 | echo $row->fullname; 20 | */ 21 | 22 | 23 | if($vuln == "") { 24 | $html = "toto"; 25 | } 26 | else { 27 | $html = "ldld"; 28 | } 29 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source17.php: -------------------------------------------------------------------------------- 1 | query($query); 8 | 9 | $row = $result->fetch_array(); 10 | 11 | echo $row[1]; 12 | 13 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source19.php: -------------------------------------------------------------------------------- 1 | member1; 11 | 12 | echo $var1; 13 | 14 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source2.php: -------------------------------------------------------------------------------- 1 | last_result = null; // block 9 6 | if(true) { 7 | echo "baba"; // block 19 8 | } 9 | else { 10 | echo "titi"; // block 33 11 | 12 | while ( $row = @mysql_fetch_object(true) ) { // block 41 et 48 (row) 13 | $this->last_result = $row; // block 52 14 | } 15 | 16 | echo "bibi"; // block 62 17 | } 18 | 19 | echo $this->last_result->title; // block 26 20 | } 21 | } 22 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source22.php: -------------------------------------------------------------------------------- 1 | getValue(); -------------------------------------------------------------------------------- /projects/tests/tests/data/source3.php: -------------------------------------------------------------------------------- 1 | methodc1(); 14 | 15 | print("$var2"); 16 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source6.php: -------------------------------------------------------------------------------- 1 | methodc1(); 24 | 25 | echo $var; 26 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source7.php: -------------------------------------------------------------------------------- 1 | methodc1arr(); 13 | 14 | echo $var2; 15 | 16 | echo $var2["tainted"]; 17 | 18 | echo $var2["not_tainted"]; 19 | -------------------------------------------------------------------------------- /projects/tests/tests/data/source8.php: -------------------------------------------------------------------------------- 1 | object1 = $val; 11 | } 12 | 13 | public function get_object1() 14 | { 15 | return $this->object1; 16 | } 17 | }; 18 | 19 | $newsettestc1 = new testc1; 20 | 21 | $newsettestc1->set_object1($_GET["p"]); 22 | 23 | echo $newsettestc1->get_object1(); 24 | -------------------------------------------------------------------------------- /projects/tests/tests/flows/flow3.php: -------------------------------------------------------------------------------- 1 | load->view('templates/header', $data['title']); 9 | 10 | $this->load->view('templates/header', $data); 11 | } 12 | } 13 | 14 | $a = new Pages; 15 | $a->view(); 16 | -------------------------------------------------------------------------------- /projects/tests/tests/frameworks/codeigniter2.php: -------------------------------------------------------------------------------- 1 | db->query("YOUR QUERY"); 8 | 9 | $result = $query->result(); 10 | 11 | foreach($result as $row) 12 | echo $row->title; 13 | } 14 | } 15 | 16 | $a = new Pages; 17 | $a->model(); 18 | -------------------------------------------------------------------------------- /projects/tests/tests/frameworks/codeigniter3.php: -------------------------------------------------------------------------------- 1 | db->query("YOUR QUERY"); 8 | 9 | $row = $query->row_array(); 10 | 11 | echo $row["test"]; 12 | } 13 | } 14 | 15 | $a = new Pages; 16 | $a->model(); 17 | -------------------------------------------------------------------------------- /projects/tests/tests/frameworks/symfony1.php: -------------------------------------------------------------------------------- 1 | '*') 9 | ); 10 | 11 | $response->headers->set('Access-Control-Allow-Origin', '*'); 12 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/alias1.php: -------------------------------------------------------------------------------- 1 | $_GET["p"], 6 | 'TEST2' => 'test2', 7 | 'TEST3' => 'test3' 8 | ); 9 | 10 | echo $var_main["TEST1"]; 11 | echo $var_main["TEST3"]; 12 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/arraysrec1.php: -------------------------------------------------------------------------------- 1 | $array_value) { 7 | // array_id = 0 8 | // array_value = arrays[0] = "eee" 9 | 10 | // array_id = 1 11 | // array_value = arrays[1] = $_GET["p"] 12 | echo $array_value; 13 | } 14 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/functions1.php: -------------------------------------------------------------------------------- 1 | $_GET["p"]); 10 | 11 | testf1(array("test" => $_GET["p"])); 12 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/functions2.php: -------------------------------------------------------------------------------- 1 | query($_POST['form_id']); 7 | } 8 | 9 | test(); -------------------------------------------------------------------------------- /projects/tests/tests/generic/loop1.php: -------------------------------------------------------------------------------- 1 | $file) { // block 10 10 | echo $file; 11 | } 12 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/loop2.php: -------------------------------------------------------------------------------- 1 | result) ) { // block 29 (row) & 22 (fetch) 7 | echo $row->title; // block 33 8 | } 9 | } 10 | echo "salut"; // block 13 11 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/loop3.php: -------------------------------------------------------------------------------- 1 | title; 6 | } 7 | 8 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/loop4.php: -------------------------------------------------------------------------------- 1 | last_query; 7 | } 8 | 9 | function query($query) { 10 | $this->last_query = $query; 11 | if ( true ) { 12 | $this->print_error(); 13 | } 14 | } 15 | } 16 | 17 | 18 | $wpdb = new wpdb; 19 | $wpdb->query($_GET["p"]); 20 | 21 | -------------------------------------------------------------------------------- /projects/tests/tests/generic/mix1.php: -------------------------------------------------------------------------------- 1 | Hello ' . $_GET[ 'c' ] . ''; 7 | } 8 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/dvwa/impossible.php: -------------------------------------------------------------------------------- 1 | Hello ' . $_GET[ 'd' ] . ''; 7 | } 8 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/dvwa/low.php: -------------------------------------------------------------------------------- 1 | Hello ' . $_GET[ 'a' ] . '';/* 8 | } 9 | 10 | if (true) { 11 | $html = $_GET["p"]; 12 | } else { 13 | $html = "eee"; 14 | } 15 | */ 16 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/dvwa/medium.php: -------------------------------------------------------------------------------- 1 | Hello ' . $_GET[ 'b' ] . ''; 7 | } 8 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/resolved_includes_simple5.txt: -------------------------------------------------------------------------------- 1 | { 2 | "includes": 3 | [ 4 | { 5 | "line":11, 6 | "column":51, 7 | "source_file":"./tests/includes/simple5.php", 8 | "value":"./tests/includes/simple5_include.php" 9 | } 10 | ] 11 | } 12 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/simple1.php: -------------------------------------------------------------------------------- 1 | $var1, 9 | ); 10 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/simple13.php: -------------------------------------------------------------------------------- 1 | $array_value) { 12 | composerRequire687f153b069c251a8396d68dc94ed595($array_value); 13 | } 14 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/simple14_include.php: -------------------------------------------------------------------------------- 1 | get_results("SE"); 6 | echo $comments->post; 7 | -------------------------------------------------------------------------------- /projects/tests/tests/includes/simple20_include.php: -------------------------------------------------------------------------------- 1 | r() ? $ba->r() : ''; 4 | 5 | -------------------------------------------------------------------------------- /projects/tests/tests/negative/missing_argument_func.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/negative/missing_argument_func.php -------------------------------------------------------------------------------- /projects/tests/tests/negative/parser_error1.php: -------------------------------------------------------------------------------- 1 | "salut"); 4 | -------------------------------------------------------------------------------- /projects/tests/tests/negative/parser_error2.php: -------------------------------------------------------------------------------- 1 | baba(); // remove and it works again 6 | return $this->last_result; 7 | } 8 | 9 | function baba() { 10 | $num_rows = 0; 11 | while ( $row = @mysql_fetch_object(true) ) { 12 | $this->last_result[$num_rows] = $row; 13 | $num_rows++; 14 | } 15 | } 16 | } 17 | 18 | $inst = new toto; 19 | $aaas = $inst->getresults(); 20 | 21 | foreach($aaas as $aaa) { 22 | echo $aaa->title; 23 | } 24 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple1.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; 12 | $instance1->boum2 = $_GET["p"]; 13 | 14 | echo $instance1->boum1; 15 | echo $instance1->boum2; 16 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple10.php: -------------------------------------------------------------------------------- 1 | boum1 = $boum1; 10 | } 11 | }; 12 | 13 | $instance1 = new testc1; 14 | $instance1->set_boum1($_GET["p"]); 15 | echo $instance1->boum1; 16 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple11.php: -------------------------------------------------------------------------------- 1 | boum1 = $boum1; 10 | } 11 | }; 12 | 13 | $instance1 = new testc1; 14 | $instance1->boum1 = $_GET["p"]; 15 | $instance1->boum1 = "ee"; 16 | echo $instance1->boum1; 17 | 18 | $instance1->boum1 = $_GET["p"]; 19 | 20 | echo $instance1->boum1; 21 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple12.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; // block 3 10 | 11 | if (rand() % 2) { 12 | $instance1->boum1 = "eee"; // block 16 13 | echo $instance1->boum1; 14 | } else { 15 | echo $instance1->boum1; // block 18 16 | } 17 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple14.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; 11 | $instance1->boum2 = $_GET["p"]; 12 | 13 | if (rand() % 2) { 14 | $instance1->boum1 = "eee"; 15 | echo $instance1->boum1; 16 | echo $instance1->boum2; 17 | } 18 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple15.php: -------------------------------------------------------------------------------- 1 | boum1; 11 | } 12 | }; 13 | 14 | // block 7 15 | $instance1 = new testc1; 16 | 17 | if (rand() % 2) { 18 | // block 13 19 | $instance1->boum1 = $_GET["p"]; 20 | } else { 21 | // block 23 22 | $instance1->boum1 = "eee"; 23 | } 24 | 25 | // block 21 26 | $instance1->echo_boum1(); 27 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple2.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; 11 | $instance1->boum2 = $_GET["p"]; 12 | 13 | echo $instance1->boum2; 14 | 15 | /* 16 | unset($instance1); 17 | 18 | echo $instance1->boum2; 19 | */ 20 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple20.php: -------------------------------------------------------------------------------- 1 | member1; 12 | echo $this->member2; 13 | } 14 | }; 15 | 16 | 17 | $testc1 = new testc4; 18 | 19 | $testc1->member1 = $_GET["p"]; 20 | 21 | $testc1->member2 = $_GET["p"]; 22 | 23 | $testc1->print_members(); 24 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple22.php: -------------------------------------------------------------------------------- 1 | data = $_GET["p"]; 12 | 13 | $b = $a; 14 | 15 | echo $a->data; // KO 16 | 17 | 18 | echo $b->data; // KO 19 | 20 | $b->data = "eee"; 21 | 22 | echo $a->data; // OK 23 | 24 | echo $b->data; // OK 25 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple23/a.php: -------------------------------------------------------------------------------- 1 | func2($sql); 17 | 18 | var_dump($results); 19 | } 20 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple23/b.php: -------------------------------------------------------------------------------- 1 | db = new MySQL_prog_pilot_test(); 12 | } 13 | 14 | public function func2($sql) 15 | { 16 | $this->db->query($sql); 17 | } 18 | } 19 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple23/c.php: -------------------------------------------------------------------------------- 1 | mysqli_obj = new mysqli('localhost', 'root', '', 'progpilottest'); 8 | } 9 | 10 | public function query($sql) 11 | { 12 | return $this->mysqli_obj->query($sql); 13 | } 14 | } 15 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple26.php: -------------------------------------------------------------------------------- 1 | babar($_GET["p"]); 23 | $a->bobo1($_GET["t"]); 24 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple27.php: -------------------------------------------------------------------------------- 1 | bobo1(); 23 | $a->babar(); 24 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple28.php: -------------------------------------------------------------------------------- 1 | query($_GET["p"]); 15 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple29.php: -------------------------------------------------------------------------------- 1 | query($_GET["p"]); 5 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple3.php: -------------------------------------------------------------------------------- 1 | stavar = $_GET["p"]; 12 | 13 | // PHP Notice: Accessing static property testa::$stavar as non static in... but it's work 14 | echo $a->stavar; 15 | 16 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple32.php: -------------------------------------------------------------------------------- 1 | func(); 22 | 23 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple34.php: -------------------------------------------------------------------------------- 1 | input = $_GET['UserData']; 10 | 11 | return $this->input; 12 | } 13 | } 14 | $temp = new Input(); 15 | 16 | $tainted = $temp->getInput(); 17 | 18 | echo $tainted; 19 | 20 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple4.php: -------------------------------------------------------------------------------- 1 | testf1(); 16 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple6.php: -------------------------------------------------------------------------------- 1 | boum1 = $boum1; 10 | } 11 | }; 12 | 13 | class testc2 14 | { 15 | public $boum1; 16 | }; 17 | 18 | if (true) { 19 | $instance = new testc1; 20 | } else { 21 | $instance = new testc2; 22 | } 23 | 24 | $instance->boum1 = $_GET["p"]; 25 | 26 | echo $instance->boum1; 27 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple7.php: -------------------------------------------------------------------------------- 1 | boum1 = $boum1; 10 | } 11 | }; 12 | 13 | $instance = new testc1; 14 | 15 | $instance->boum1 = $_GET["p"]; 16 | 17 | echo $instance->boum1; 18 | 19 | $instance = "dkdkdk"; 20 | 21 | $instance->boum1 = $_GET["p"]; 22 | 23 | echo $instance->boum1; 24 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple8.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; 12 | $instance1->boum2 = $instance1->boum1; 13 | 14 | echo $instance1->boum2; 15 | 16 | $instance1->boum2 = $_GET["p"]; 17 | 18 | echo $instance1->boum2; 19 | -------------------------------------------------------------------------------- /projects/tests/tests/oop/simple9.php: -------------------------------------------------------------------------------- 1 | boum1($_GET["p"]); 30 | -------------------------------------------------------------------------------- /projects/tests/tests/optimizations/cleanopinfoconcatleft.php: -------------------------------------------------------------------------------- 1 | _message.=$tmp; 10 | 11 | echo $this->_message; 12 | } 13 | } 14 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test0.php: -------------------------------------------------------------------------------- 1 | getSource('x'); 8 | // ok 9 | echo (int) $a->getSource('y'); 10 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test10B.php: -------------------------------------------------------------------------------- 1 | inner = new C($inner); 12 | } 13 | /** 14 | * @return mixed 15 | */ 16 | public function getSource(string $index) 17 | { 18 | return $this->inner->getSource($index); 19 | } 20 | } 21 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test10C.php: -------------------------------------------------------------------------------- 1 | source = $source; 9 | } 10 | /** 11 | * @return mixed 12 | */ 13 | public function getSource(string $index) 14 | { 15 | return $this->source[$index]; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test11.php: -------------------------------------------------------------------------------- 1 | get(); 7 | echo $result; 8 | */ 9 | 10 | foreach ([$_GET["p"]] as $value) { 11 | echo $value; 12 | } 13 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test13E.php: -------------------------------------------------------------------------------- 1 | var) { 8 | $this->var = []; 9 | foreach (['str', $_GET['e']] as $key => $value) { 10 | $this->var[$key] = $value; 11 | echo $value; 12 | echo $key; 13 | } 14 | } 15 | return $this->var; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test14.php: -------------------------------------------------------------------------------- 1 | query('SELECT * FROM user WHERE id = ' . $_GET['id']); 7 | F::sensitive($_GET['1']); 8 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test14F.php: -------------------------------------------------------------------------------- 1 | getSource('a'); 8 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test3A.php: -------------------------------------------------------------------------------- 1 | source = $source; 9 | } 10 | /** 11 | * @return mixed 12 | */ 13 | public function getSource(string $index) 14 | { 15 | return $this->source[$index]; 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test4.php: -------------------------------------------------------------------------------- 1 | 1.4, 7 | new \stdClass, 8 | ]; 9 | foreach ($items as $param) { 10 | echo $param; 11 | } 12 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test8.php: -------------------------------------------------------------------------------- 1 | 1.4, 7 | ]; 8 | for ($i = 0; $i < count($items); $i++) { 9 | echo $items[$i]; 10 | } 11 | -------------------------------------------------------------------------------- /projects/tests/tests/phpwander/test9.php: -------------------------------------------------------------------------------- 1 | = 0); 11 | -------------------------------------------------------------------------------- /projects/tests/tests/real/array1.php: -------------------------------------------------------------------------------- 1 | __isset( $key ) ) { 8 | $post[ $key ] = $this->__get( $key ); 9 | } 10 | } 11 | 12 | return $post; 13 | } 14 | -------------------------------------------------------------------------------- /projects/tests/tests/real/composer/composer.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "test/vuln", 3 | "description": "test vuln composer package", 4 | "repositories": [ 5 | { 6 | "type": "path", 7 | "url": "./test_package" 8 | } 9 | ], 10 | "require": { 11 | "progpilot/tests/test_package": "dev-master" 12 | } 13 | } 14 | -------------------------------------------------------------------------------- /projects/tests/tests/real/composer/index.php: -------------------------------------------------------------------------------- 1 | return_tainted_source(); 9 | -------------------------------------------------------------------------------- /projects/tests/tests/real/composer/notexcluded_vendor/autoload.php: -------------------------------------------------------------------------------- 1 | $vendorDir . '/progpilot/tests/test_package/init.php', 10 | ); 11 | -------------------------------------------------------------------------------- /projects/tests/tests/real/composer/notexcluded_vendor/composer/autoload_namespaces.php: -------------------------------------------------------------------------------- 1 | array($vendorDir . '/progpilot/tests/test_package'), 10 | ); 11 | -------------------------------------------------------------------------------- /projects/tests/tests/real/composer/notexcluded_vendor/composer/autoload_psr4.php: -------------------------------------------------------------------------------- 1 | xssvuln($tainted); 13 | $f1->xssvuln($_GET["p"]); 14 | } 15 | } 16 | 17 | 18 | -------------------------------------------------------------------------------- /projects/tests/tests/real/namespaces1/test.php: -------------------------------------------------------------------------------- 1 | callfoo1("toto"); 7 | $f2->callfoo1($_GET["t"]); 8 | -------------------------------------------------------------------------------- /projects/tests/tests/real/object1.php: -------------------------------------------------------------------------------- 1 | fetchSingleRow( 9 | ); 10 | } 11 | 12 | if (true) { 13 | $this->query( 14 | ); 15 | } 16 | } 17 | } 18 | -------------------------------------------------------------------------------- /projects/tests/tests/real/sqli.php: -------------------------------------------------------------------------------- 1 | escape($descriptions[$i]); 6 | 7 | $result = $wpdb->query($cat_id); 8 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/index.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/box-bg.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/box-bg.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/box-butt.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/box-butt.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/box-head.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/box-head.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/browse-happy.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/browse-happy.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/fade-butt.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/fade-butt.png -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/notice.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/notice.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/toggle.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/toggle.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/images/wordpress-logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/images/wordpress-logo.png -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/import/b2.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/import/b2.php -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/import/greymatter.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/import/greymatter.php -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-admin/import/livejournal.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-admin/import/livejournal.php -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/index.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/classic/footer.php: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 |

WordPress"), __("Powered by WordPress, state-of-the-art semantic personal publishing platform.")); ?>

7 | 8 | 9 | 10 | 11 | 12 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/classic/screenshot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/classic/screenshot.png -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/404.php: -------------------------------------------------------------------------------- 1 | 2 | 3 |
4 | 5 |

Error 404 - Not Found

6 | 7 |
8 | 9 | 10 | 11 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/archives.php: -------------------------------------------------------------------------------- 1 | 6 | 7 | 8 | 9 |
10 | 11 | 12 | 13 |

Archives by Month:

14 | 17 | 18 |

Archives by Subject:

19 | 22 | 23 |
24 | 25 | 26 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/images/audio.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/images/audio.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickbg.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickbg.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickbgcolor.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickbgcolor.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickbgwide.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickbgwide.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickfooter.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickfooter.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickheader.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/images/kubrickheader.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/links.php: -------------------------------------------------------------------------------- 1 | 6 | 7 | 8 | 9 |
10 | 11 |

Links:

12 | 15 | 16 |
17 | 18 | 19 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/screenshot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-content/themes/default/screenshot.png -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-content/themes/default/searchform.php: -------------------------------------------------------------------------------- 1 |
2 |
3 | 4 |
5 |
6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/class-snoopy.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/class-snoopy.php -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_arrow.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_arrow.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_biggrin.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_biggrin.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_confused.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_confused.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_cool.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_cool.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_cry.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_cry.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_eek.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_eek.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_evil.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_evil.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_exclaim.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_exclaim.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_idea.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_idea.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_lol.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_lol.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_mad.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_mad.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_mrgreen.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_mrgreen.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_neutral.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_neutral.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_question.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_question.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_razz.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_razz.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_redface.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_redface.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_rolleyes.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_rolleyes.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_sad.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_sad.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_smile.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_smile.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_surprised.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_surprised.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_twisted.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_twisted.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_wink.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/images/smilies/icon_wink.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/blank.htm: -------------------------------------------------------------------------------- 1 | 2 | 3 | blank_page 4 | 5 | 6 | 7 | 8 | 9 | 10 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/autosave/langs/cs.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/autosave/langs/cs.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/autosave/langs/en.js: -------------------------------------------------------------------------------- 1 | // EN lang variables 2 | 3 | tinyMCE.addToLang('',{ 4 | autosave_unload_msg : 'The changes you made will be lost if you navigate away from this page.' 5 | }); 6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/autosave/langs/sv.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/autosave/langs/sv.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/autosave/readme.txt: -------------------------------------------------------------------------------- 1 | Check the TinyMCE documentation for details on this plugin. 2 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/directionality/images/ltr.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/directionality/images/ltr.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/directionality/images/rtl.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/directionality/images/rtl.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/directionality/langs/en.js: -------------------------------------------------------------------------------- 1 | // UK lang variables 2 | 3 | tinyMCE.addToLang('',{ 4 | directionality_ltr_desc : 'Direction left to right (Alt-.)', 5 | directionality_rtl_desc : 'Direction right to left (Alt-,)' 6 | }); 7 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/css/inlinepopup.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/css/inlinepopup.css -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/editor_plugin.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/editor_plugin.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/editor_plugin_src.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/editor_plugin_src.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/spacer.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/spacer.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_close.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_close.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_maximize.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_maximize.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_minimize.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_minimize.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_resize.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/images/window_resize.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/jscripts/mcwindows.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/jscripts/mcwindows.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/readme.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/inlinepopups/readme.txt -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/help.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/help.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/more.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/more.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/more_bug.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/more_bug.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/page.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/page.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/page_bug.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/images/page_bug.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wordpress/langs/en.js: -------------------------------------------------------------------------------- 1 | // EN lang variables 2 | 3 | tinyMCE.addToLang('',{ 4 | wordpress_more_button : 'Split post with More tag (Alt-t)', 5 | wordpress_page_button : 'Split post with Page tag', 6 | wordpress_more_alt : 'More...', 7 | wordpress_page_alt : '...page...' 8 | }); 9 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wphelp/images/help.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wphelp/images/help.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/plugins/wphelp/langs/en.js: -------------------------------------------------------------------------------- 1 | // EN lang variables 2 | 3 | tinyMCE.addToLang('',{ 4 | help_button_title : 'Help (Alt+h)' 5 | }); 6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/editor_template_src.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/editor_template_src.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/anchor.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/anchor.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/anchor_symbol.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/anchor_symbol.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/backcolor.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/backcolor.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold_de_se.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold_de_se.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold_fr.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold_fr.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold_ru.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bold_ru.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/browse.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/browse.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bullist.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/bullist.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/buttons.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/buttons.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/cancel_button_bg.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/cancel_button_bg.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/center.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/center.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/charmap.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/charmap.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/cleanup.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/cleanup.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/close.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/close.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/code.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/code.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/color.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/color.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/copy.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/copy.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/custom_1.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/custom_1.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/cut.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/cut.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/forecolor.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/forecolor.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/full.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/full.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/hr.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/hr.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/image.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/image.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/indent.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/indent.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/insert_button_bg.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/insert_button_bg.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/italic.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/italic.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/italic_de_se.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/italic_de_se.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/italic_ru.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/italic_ru.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/left.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/left.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/link.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/link.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/newdocument.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/newdocument.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/numlist.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/numlist.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/outdent.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/outdent.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/paste.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/paste.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/redo.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/redo.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/removeformat.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/removeformat.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/right.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/right.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/spacer.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/spacer.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/statusbar_resize.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/statusbar_resize.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/strikethrough.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/strikethrough.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/sub.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/sub.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/sup.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/sup.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_delete_col.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_delete_col.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_delete_row.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_delete_row.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_col_after.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_col_after.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_col_before.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_col_before.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_row_after.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_row_after.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_row_before.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/table_insert_row_before.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/underline.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/underline.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/underline_fr.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/underline_fr.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/underline_ru.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/underline_ru.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/undo.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/undo.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/unlink.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/unlink.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/visualaid.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/visualaid.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_bg.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_bg.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_end.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_end.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_sel_bg.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_sel_bg.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_sel_end.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tab_sel_end.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tabs_bg.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/themes/advanced/images/xp/tabs_bg.gif -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/tiny_mce.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/tiny_mce.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/tiny_mce_gzip.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/tiny_mce_gzip.php -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/tiny_mce_popup.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/tiny_mce_popup.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/utils/form_utils.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/utils/form_utils.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/utils/mctabs.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/utils/mctabs.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tinymce/utils/validate.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tinymce/utils/validate.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/js/tw-sack.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress/wp-includes/js/tw-sack.js -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-includes/version.php: -------------------------------------------------------------------------------- 1 | 9 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress/wp-pass.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/index.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-blog-header.php: -------------------------------------------------------------------------------- 1 | 10 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/index.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/classic/footer.php: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 |

WordPress"), __("Powered by WordPress, state-of-the-art semantic personal publishing platform.")); ?>

7 | 8 | 9 | 10 | 11 | 12 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/classic/screenshot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/classic/screenshot.png -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/404.php: -------------------------------------------------------------------------------- 1 | 2 | 3 |
4 | 5 |

Error 404 - Not Found

6 | 7 |
8 | 9 | 10 | 11 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/archives.php: -------------------------------------------------------------------------------- 1 | 6 | 7 | 8 | 9 |
10 | 11 | 12 | 13 |

Archives by Month:

14 | 17 | 18 |

Archives by Subject:

19 | 22 | 23 |
24 | 25 | 26 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/images/audio.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/images/audio.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickbg.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickbg.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickbgcolor.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickbgcolor.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickbgwide.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickbgwide.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickfooter.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickfooter.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickheader.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/images/kubrickheader.jpg -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/links.php: -------------------------------------------------------------------------------- 1 | 6 | 7 | 8 | 9 |
10 | 11 |

Links:

12 | 15 | 16 |
17 | 18 | 19 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/screenshot.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/real/wordpress1/wp-content/themes/default/screenshot.png -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-content/themes/default/searchform.php: -------------------------------------------------------------------------------- 1 |
2 |
3 | 4 |
5 |
6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress1/wp-includes/comment-functions.php: -------------------------------------------------------------------------------- 1 | comment_content); 6 | } 7 | 8 | function comment_text() { 9 | echo apply_filters('comment_text', get_comment_text() ); 10 | } 11 | 12 | ?> 13 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress2/wp-admin/admin-db.php: -------------------------------------------------------------------------------- 1 | 12 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress2/wp-admin/import/textpattern.php: -------------------------------------------------------------------------------- 1 | get_results('SELECT 15 | id, 16 | name, 17 | title 18 | FROM '.$prefix.'txp_category 19 | WHERE type = "article"'); 20 | } 21 | } 22 | */ 23 | ?> 24 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress2/wp-commentsrss2.php: -------------------------------------------------------------------------------- 1 | get_results($_GET["p"]); 6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress2/wp-includes/functions-post.php: -------------------------------------------------------------------------------- 1 | post_status ) 14 | return wp_delete_attachment($postid); 15 | 16 | return $post; 17 | } 18 | */ 19 | ?> 20 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress3/wp-admin/admin-db.php: -------------------------------------------------------------------------------- 1 | 12 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress3/wp-admin/import/textpattern.php: -------------------------------------------------------------------------------- 1 | get_results('SELECT 15 | id, 16 | name, 17 | title 18 | FROM '.$prefix.'txp_category 19 | WHERE type = "article"'); 20 | } 21 | } 22 | */ 23 | ?> 24 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress3/wp-admin/update-links.php: -------------------------------------------------------------------------------- 1 | 6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress3/wp-commentsrss2.php: -------------------------------------------------------------------------------- 1 | get_results($_GET["p"]); 6 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress3/wp-includes/functions-post.php: -------------------------------------------------------------------------------- 1 | post_status ) 14 | return wp_delete_attachment($postid); 15 | 16 | return $post; 17 | } 18 | */ 19 | ?> 20 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress4/wp-commentsrss2.php: -------------------------------------------------------------------------------- 1 | get_results($_GET["p"]); 6 | 7 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress4/wp-config.php: -------------------------------------------------------------------------------- 1 | 7 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress4/wp-includes/wp-db.php: -------------------------------------------------------------------------------- 1 | result = @mysql_query($query, $this->dbh); 7 | } 8 | 9 | function get_results($query = null, $output = OBJECT) { 10 | $this->query($query); 11 | } 12 | } 13 | 14 | $wpdb = new wpdb(DB_USER, DB_PASSWORD, DB_NAME, DB_HOST); 15 | ?> 16 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress4/wp-login.php: -------------------------------------------------------------------------------- 1 | 5 | -------------------------------------------------------------------------------- /projects/tests/tests/real/wordpress4/wp-settings.php: -------------------------------------------------------------------------------- 1 | 7 | -------------------------------------------------------------------------------- /projects/tests/tests/todo/clone.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/todo/clone.php -------------------------------------------------------------------------------- /projects/tests/tests/todo/functions22.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; 13 | 14 | echo $instance2->boum1; 15 | -------------------------------------------------------------------------------- /projects/tests/tests/todo/property_taint.php: -------------------------------------------------------------------------------- 1 | boum1 = $_GET["p"]; 11 | 12 | echo $instance1->boum1; 13 | 14 | $instance1->boum1 = "eee"; 15 | 16 | echo $instance1->boum1; 17 | -------------------------------------------------------------------------------- /projects/tests/tests/todo/unset.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/designsecurity/progpilot/1e271a2dda9dc6c7a59e21eee942725ad3820869/projects/tests/tests/todo/unset.php -------------------------------------------------------------------------------- /projects/tests/tests/twig/twig1.js: -------------------------------------------------------------------------------- 1 | /* 2 | { 3 | var vartest = 56; 4 | } 5 | 6 | if (vartest % 2 == 0) { 7 | var variable1; 8 | variable1 = test1; 9 | } else { 10 | var variable2; 11 | variable2 = test2; 12 | } 13 | 14 | { 15 | var variable3; 16 | variable3 = "eee"; 17 | document.write("{{TEST1}}"); 18 | } 19 | */ 20 | 21 | document.write("{{TEST1}}"); 22 | -------------------------------------------------------------------------------- /projects/tests/tests/twig/twig1.php: -------------------------------------------------------------------------------- 1 | $_GET["p"], 5 | 'TEST2' => 'test2', 6 | 'TEST3' => 'test3' 7 | ); 8 | 9 | $loader = new Twig_Loader_Filesystem('./templates'); 10 | 11 | $twig = new Twig_Environment($loader, array('autoescape' => false)); 12 | 13 | echo $twig->render('twig1.js', $var_main); 14 | --------------------------------------------------------------------------------