Description
Safe sample
input : execute a ls command using the function system, and put the last result in $tainted
sanitize : use mysql_real_escape_string via an object and a classic getter
construction : concatenation with simple quote
Test Suites
Have any comments on this test case? Please, send us an email.