From 1ce449e13a4995d7534224330d4bf816e18a57ef Mon Sep 17 00:00:00 2001 From: Stanislau Kviatkouski <7zete7@gmail.com> Date: Wed, 5 Apr 2023 16:28:03 +0300 Subject: [PATCH 1/2] Remove deprecated 'FILTER_SANITIZE_STRING' string value sanitization branch --- src/PAMI/Message/Message.php | 3 --- 1 file changed, 3 deletions(-) diff --git a/src/PAMI/Message/Message.php b/src/PAMI/Message/Message.php index 1227354f..52145679 100644 --- a/src/PAMI/Message/Message.php +++ b/src/PAMI/Message/Message.php @@ -159,9 +159,6 @@ protected function sanitizeInput($value) if (strcasecmp($value, 'off') === 0 || strcasecmp($value, 'false') === 0 || strcasecmp($value, 'no') === 0) { return (boolean)false; } - if (filter_var($value, FILTER_SANITIZE_STRING, FILTER_NULL_ON_FAILURE)) { - return (string)$value; - } if (filter_var($value, FILTER_SANITIZE_FULL_SPECIAL_CHARS, FILTER_NULL_ON_FAILURE)) { return (string)htmlspecialchars($value, ENT_QUOTES); } From fb284aeda8e2a13a2de9d4839df99e8e77b58653 Mon Sep 17 00:00:00 2001 From: Stanislau Kviatkouski <7zete7@gmail.com> Date: Wed, 5 Apr 2023 16:29:20 +0300 Subject: [PATCH 2/2] Replace undocumented 'FILTER_SANITIZE_FULL_SPECIAL_CHARS' filter by common 'FILTER_UNSAFE_RAW' filter --- src/PAMI/Message/Message.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/PAMI/Message/Message.php b/src/PAMI/Message/Message.php index 52145679..878bea98 100644 --- a/src/PAMI/Message/Message.php +++ b/src/PAMI/Message/Message.php @@ -159,7 +159,7 @@ protected function sanitizeInput($value) if (strcasecmp($value, 'off') === 0 || strcasecmp($value, 'false') === 0 || strcasecmp($value, 'no') === 0) { return (boolean)false; } - if (filter_var($value, FILTER_SANITIZE_FULL_SPECIAL_CHARS, FILTER_NULL_ON_FAILURE)) { + if (filter_var($value, FILTER_UNSAFE_RAW, FILTER_NULL_ON_FAILURE)) { return (string)htmlspecialchars($value, ENT_QUOTES); } throw new PAMIException("Incoming String is not sanitary. Skipping: '" . $value . "'\n");