kj/duckbrain
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Verify if a valid http query string after run parse_str.

Browse Source
This commit is contained in:
kj 2025-02-20 08:22:47 -03:00
parent 595e9c1316
commit d0d0d4dc76
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/Libs/Request.php
View File

@ -47,8 +47,9 @@ class Request extends Neuron {
);
else {
$this->json = new Neuron();
if (in_array($_SERVER['REQUEST_METHOD'], ['PUT', 'PATCH', 'DELETE'])) {
parse_str(file_get_contents("php://input"), $input_vars);
if (in_array($_SERVER['REQUEST_METHOD'], ['PUT', 'PATCH', 'DELETE']) &&
preg_match('/^[^;?\/:@&=+$,]{1,255}[=]/', $this->body, $matches)) { // Con la expresión regular verificamos que sea un http query string válido y evitamos errores de memoria en caso de que el body tenga algo más grande que eso.
parse_str($this->body, $input_vars);
$this->{strtolower($_SERVER['REQUEST_METHOD'])} = new Neuron($input_vars);
}
}