Home/ Questions/Q 6127077
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-23T16:27:34+00:00

i would like to have a REGEX to filter /match the QUERY_STRING whenever contains

  • 0

i would like to have a REGEX to filter/match the QUERY_STRING whenever contains the parameters like theese php|data|ftp|http|..|/|:// and any other character that can be used for Remote File Inclusion.

Thank’s to all for the time:

PS: i know this is better done with htaccess but i need a regex now.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    If you want to prevent remote file inclusion, you could simply disable the stream wrappers, e.g.

    • allow_url_include – this option allows the use of URL-aware fopen wrappers with the following functions: include(), include_once(), require(), require_once().

    and for any other URL aware functions

    • disable allow_url_fopen – This option enables the URL-aware fopen wrappers that enable accessing URL object like files

    If you want to check if the query param is a URL, you can use parse_url

    if (parse_url($url) === FALSE) {

    or use the filter_* functions

    if (filter_var($url, FILTER_VALIDATE_URL) === FALSE) {
    • 0