Файловый менеджер - Редактировать - /home/c7lekhnath/silverray.com.au/oldsite/app/Http/Middleware/PreventXSSAttackMiddleware.php
Назад
<?php namespace App\Http\Middleware; use Closure; use Illuminate\Http\Request; use Symfony\Component\HttpFoundation\Response; class PreventXSSAttackMiddleware { /** * Handle an incoming request. * * @param \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response) $next */ public function handle(Request $request, Closure $next): Response { if($request->getMethod() == 'POST' || $request->getMethod() == 'PUT' || $request->getMethod() == 'PATCH') { $input = array_filter($request->except('_token')); $html_event_attributes = array('onload','onunload','onclick','ondblclick','onmousedown','onmouseup','onmouseover','onmousemove','onmouseout','onkeypress','onkeydown','onkeyup','onfocus','onblur','onsubmit','onreset','onchange','onselect','oninput','oncontextmenu'); array_walk_recursive($input, function (&$input) use ($html_event_attributes) { $input = strip_tags(str_replace(array("<", ">"), '', $input), '<span><p><a><b><i><u><strong><br><hr><table><tr><th><td><ul><ol><li><h1><h2><h3><h4><h5><h6><del><ins><sup><sub><pre><address><img><figure><embed><iframe><video><style>'); foreach ($html_event_attributes as $attribute) { $input = str_replace($attribute, '', $input); } }); $request->merge($input); } return $next($request); } }
| ver. 1.4 |
Github
|
.
| PHP 8.3.20 | Генерация страницы: 0.01 |
proxy
|
phpinfo
|
Настройка