{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 成全新的幸福 的问题《Filter var for calling a shellscript with system o》','https://www.manongdao.com/q-909431.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
i need to filter those var to call system in php and execute a shell script. What filter_var SANITIZE macro i need to use to remove ";" or problems during shell execution? Like unwanted chars..etc..etc
This is my code testing example, now i've hardcoded the var for testing.. Thanks!
$ragionesociale = $_GET["ragionesociale"]; /* Alphanumeric with spaces next trimmed*/
$api = $_GET["ragionesociale"]; /* Uri with space encoded*/
$sito = $_GET["sito"]; /* Uri with space encoded*/
$meta = $_GET["meta"]; /*Address, CF, a lot of things...*/
$tmp_dir = "tmp_app";
if(!filter_has_var(INPUT_GET, "ragionesociale") ||
!filter_has_var(INPUT_GET, "sito") ||
!filter_has_var(INPUT_GET, "meta") ||
!filter_has_var(INPUT_GET, "api")
){
echo("Input type does not exist");
exit();
}
system("../configmyapp2.sh ".$ragionesociale." ".$api." ".$sito." ".$meta." ".$tmp_dir);
http://php.net/manual/en/function.escapeshellarg.php
Pass your command line parameters through this and you're safe ;) Also I'd recommend you use exec() instead of system() or even shell_exec() because you'll be able to get the return value from your script as well as any text output which you may want to use.
If this can be triggered by other users then I would not go by this method.
Its very dangerous, especially with your multiple parameters and sanitization rules.
There is no built-in sanitization filter that can do this; however, you can fake it with
FILTER_CALLBACKandescapeshellarglike this:You might be interested in escapeshellarg().