1.2.559. Incoming Variable Index Inventory

This collects all the index used in incoming variables : $_GET, $_POST, $_REQUEST, $_COOKIE.

<?php

// x is collected
echo $_GET['x'];

// y is collected, but no z.
echo $_POST['y']['z'];

// a is not collected
echo $_ENV['s'];

?>

1.2.559.1. Specs

Short name

Type/GPCIndex

Rulesets

All, Appinfo, CE, Inventory

Exakat since

1.0.4

PHP Version

All

Severity

Time To Fix

Precision

Very high

Features

super-global

Available in

Entreprise Edition, Community Edition, Exakat Cloud