|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2020-02-07 08:03 UTC] cmb@php.net
-Status: Open
+Status: Feedback
-Assigned To:
+Assigned To: cmb
[2020-02-07 08:03 UTC] cmb@php.net
[2020-02-07 09:41 UTC] murray at focus-computing dot com dot au
-Status: Feedback
+Status: Assigned
[2020-02-07 09:41 UTC] murray at focus-computing dot com dot au
[2020-02-07 10:43 UTC] cmb@php.net
-Status: Assigned
+Status: Verified
-Assigned To: cmb
+Assigned To:
[2020-02-07 10:43 UTC] cmb@php.net
[2024-07-09 05:35 UTC] jeffrey597doss at outlook dot com
|
|||||||||||||||||||||||||||||||||
Copyright © 2001-2025 The PHP GroupAll rights reserved. |
Last updated: Thu Oct 23 09:00:02 2025 UTC |
Description: ------------ I was testing some input being passed via a parameter to my script. I was getting an error indicating that the value passed was invalid, yet it didn't contain any of the strings I was searching for. I went through the process of shortening the string and when I got below 8192 chars in length it worked, over 8192 chars in length it would fail. I also tried this on PHP v7.1.32 and the exact same code on my Mac OSX which worked correctly. Test script: --------------- filter_var(trim($_REQUEST['parms']), FILTER_VALIDATE_REGEXP, array("options" => array("regexp" => "/^((?!union select|union all|\'A=|select char).)*$/im"))); Expected result: ---------------- A) filter_var should handle strings longer than 8192 chars OR B) Add documentation to filter_var manual entry indicating maximum length of string.