/** * 全局变量过滤 */ public static function filter() { $allowed = array('GLOBALS' => 1, '_GET' => 1, '_POST' => 1, 'HTTP_RAW_POST_DATA' => 1, '_COOKIE' => 1, '_FILES' => 1, '_SERVER' => 1, '_APP' => 1); foreach ($GLOBALS as $key => $value) { if (!isset($allowed[$key])) { $GLOBALS[$key] = null; unset($GLOBALS[$key]); } } if (!get_magic_quotes_gpc()) { iS::slashes($_POST); iS::slashes($_GET); iS::slashes($_COOKIE); } iS::getServer(array('HTTP_REFERER', 'HTTP_HOST', 'HTTP_X_FORWARDED_FOR', 'HTTP_USER_AGENT', 'HTTP_CLIENT_IP', 'HTTP_SCHEME', 'HTTPS', 'PHP_SELF', 'REQUEST_URI', 'REQUEST_METHOD', 'REMOTE_ADDR', 'SCRIPT_NAME', 'SERVER_SOFTWARE', 'REQUEST_TIME', 'QUERY_STRING', 'argv', 'argc')); }