diff options
author | Ferenc Kovacs <tyrael@php.net> | 2014-07-02 22:37:43 +0200 |
---|---|---|
committer | Ferenc Kovacs <tyrael@php.net> | 2014-07-02 22:37:58 +0200 |
commit | 37a13d2df7eb7f59f8b44dd2064185daf54e4f86 (patch) | |
tree | 4d666787a542b2279a22a9d950bfa2d79782c16d | |
parent | 3cc6bd10acdec14dc28bce1f39689bc99add4514 (diff) | |
download | php-git-37a13d2df7eb7f59f8b44dd2064185daf54e4f86.tar.gz |
adding a reproduce script for bug #49184
-rw-r--r-- | ext/filter/tests/bug49184.phpt | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/ext/filter/tests/bug49184.phpt b/ext/filter/tests/bug49184.phpt new file mode 100644 index 0000000000..86d35db0d5 --- /dev/null +++ b/ext/filter/tests/bug49184.phpt @@ -0,0 +1,22 @@ +--TEST-- +Bug #67296 (filter_input doesn't validate variables) +--XFAIL-- +See Bug #49184 +--SKIPIF-- +<?php if (!extension_loaded("filter")) die("skip needs filter ext"); ?> +--ENV-- +return <<<END +HTTP_X_FORWARDED_FOR=example.com +END; +--FILE-- +<?php + var_dump(filter_input(INPUT_SERVER, "HTTP_X_FORWARDED_FOR", FILTER_UNSAFE_RAW)); + var_dump($_SERVER["HTTP_X_FORWARDED_FOR"]); + var_dump(getenv("HTTP_X_FORWARDED_FOR")); + var_dump("done"); +?> +--EXPECT-- +string(11) "example.com" +string(11) "example.com" +string(11) "example.com" +string(4) "done" |