- Модуль: security
- Путь к файлу: ~/bitrix/modules/security/classes/general/post_filter_variables.php
- Класс: CSecurityXSSDetectVariables
- Вызов: CSecurityXSSDetectVariables::parseVariable
protected function parseVariable($name, $value)
{
if(!$value)
return;
if(preg_match("/[^\](((\)(\))*+')+/s"," ".$value))
{
$encodedValue = htmlspecialcharsbx($value);
$this->pushValue(
$name,
$value,
true
);
if ($encodedValue && $encodedValue !== $value)
{
$this->pushValue(
$name,
$encodedValue,
true
);
}
}
elseif(preg_match("/[^\](((\)(\))*+")+/s"," ".$value))
{
$this->pushValue(
$name,
$value,
true
);
}
else
{
$encodedValue = htmlspecialcharsbx($value);
$this->pushValue(
$name,
$value,
false
);
if ($encodedValue && $encodedValue !== $value)
{
$this->pushValue(
$name,
$encodedValue,
false
);
}
}
}