I have no knowledge of PHP. I'm managing an IIS server that is going under PCI audit and this is one of the findings. Website is using PHP Manager 5.3 and WordPress.
I researched the issue and a page says add a code to fix
Code: Select all
$file = str_replace(chr(0), '', $string);
Where to put this code?
Also I saw another web page that was saying to add the same code but instead of $file was $input. so which one is correct ?
Thank you all in advance.