Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use mysql_real_escape_string via an object construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use mysql_real_escape_string via an object construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use mysql_real_escape_string via an object construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted sanitize : use mysql_real_escape_string via an object construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use of pg_escape_literal construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : concatenation with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote

Safe sample input : execute a ls command using the function system, and put the last result in $tainted SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote