$value) { if (is_null($value)) { http_response_code(400); die("Valeur incorecte pour le paramètre $arg : " . filter_input(INPUT_GET, $arg, FILTER_SANITIZE_FULL_SPECIAL_CHARS)); } else if ($value) { if ($value === true) { if (strlen($arg) <= 2) $args .= " -$arg"; else $args .= " --$arg"; } else { if (strlen($arg) <= 2) $args .= " -$arg$value"; else $args .= " --$arg $value"; } } } $tempPath = tempnam(sys_get_temp_dir(), 'scan_').".xml"; exec("nmap$args -oX '$tempPath' $targets 2>&1", $stderr, $code); if ($code) { http_response_code(500); die(implode("
\n", $stderr)); } $xml = new DOMDocument(); $xml->load($tempPath); `rm "$tempPath"`; $saveAsURL = $saveAs? "$BASEDIR/$SCANSDIR/$saveAs.xml" : ""; $xml->insertBefore($xml->createProcessingInstruction('xslt-param', "name='saveAs' value='".htmlentities($saveAsURL, ENT_QUOTES)."'"), $xml->documentElement); $xml->insertBefore($xml->createProcessingInstruction('xslt-param', "name='scansDir' value='".htmlentities($SCANSDIR, ENT_QUOTES)."'"), $xml->documentElement); $xml->insertBefore($xml->createProcessingInstruction('xslt-param', "name='compareWith' value='".htmlentities($compareWith, ENT_QUOTES)."'"), $xml->documentElement); if ($saveAs) { $path = "$SCANSDIR/$saveAs.xml"; $xml->save($path); header("Location: $path"); exit(); } else { header('Content-type: text/xml'); exit($xml->saveXML()); }