Taint is a PHP extension, used for detecting XSS codes
Switch branches/tags
Nothing to show
Pull request Compare This branch is 104 commits behind laruence:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
tests
CREDITS
EXPERIMENTAL
README
config.m4
config.w32
package2.xml
php_taint.h
taint.c

README

TAINT is a php-ext used to detect XSS codes(tainted string).

The idea is from https://wiki.php.net/rfc/taint, I implemented it in a php extension which make the patch no-needed.

Please note that do not enable this extension in product env.

Works with PHP-5.2.6 ~ PHP-5.4.0