Ok, after the first day running I checked several PHP projects for the RFI’s. Some worked, some not, because of two reasons:
- There was a other “include” or “require” before the potential RFI, wich included settings or configs in wich the variable was defined. To get rid of that the scripts check that there is no such function before the RFI.
- Checking for constants with “defined” before “include” or “require” prevents RFI’s. To get rid of that the script checks that there is no “defined” function before the RFI
So the whole scripts now start from beginning, and the output should be much better with the stronger filter. Let’s hope the best and enjoy.