Description
Safe sample
input : use exec to execute the script /tmp/tainted.php and store the output in $tainted
SANITIZE : use preg_replace to keep only char, number and _ ,\, -
construction : use of sprintf via a %s with simple quote
Test Suites
Have any comments on this test case? Please, send us an email.