Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : uses of ESAPI, an OWASP API construction : prepared query and right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : uses of ESAPI, an OWASP API construction : prepared query and no right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : uses of ESAPI, an OWASP API construction : right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : uses of ESAPI, an OWASP API construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : concatenation and checks if the user is allowed to see this data

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : prepared query and right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : prepared query and no right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : fopen

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use in_array to check if $tainted is in the white list construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : concatenation and checks if the user is allowed to see this data

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : prepared query and right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : prepared query and no right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : fopen

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use of ternary condition construction : interpretation with simple quote

Unsafe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of preg_replace construction : fopen

Unsafe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : none construction : fopen

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : cast into int construction : concatenation and checks if the user is allowed to see this data

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : cast into int construction : prepared query and right verification

Unsafe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : cast into int construction : prepared query and no right verification

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : cast into int construction : right verification

Unsafe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : cast into int construction : concatenation with simple quote