HEX
Server: nginx/1.28.0
System: Linux w3c-2 6.8.0-78-generic #78-Ubuntu SMP PREEMPT_DYNAMIC Tue Aug 12 11:34:18 UTC 2025 x86_64
User: inpa_co_1 (1082)
PHP: 8.3.29
Disabled: NONE
$ pwd: /etc/modsecurity.d/owasp/regex-assembly/
Upload Files
File: //etc/modsecurity.d/owasp/regex-assembly/933180.ra
##! Please refer to the documentation at
##! https://coreruleset.org/docs/development/regex_assembly/.

##! This rule detects PHP variable function calls.
##! Examples: $func(), $$func(), $var['key'](), ${expression}()

##!> define php-id-start [a-zA-Z_\x7f-\xff]
##!> define php-id-chars [a-zA-Z0-9_\x7f-\xff]

##! One or more dollar signs (PHP variable prefix)
##!^ \$+

##! Noise between variable name and function call (zero or more):
##! whitespace, array access [...], curly braces {...},
##! block comments /* ... */, line comments //..., hash comments #...
##!> assemble
  \s
  \[.+\]
  {.+}
  /\*.*\*/
  //.*
  #.*
  ##!=>
  *
  ##!=< noise
##!<

##! PHP variable name or curly brace expression,
##! followed by optional noise, then function call
##!> assemble
  ##! PHP identifier (e.g., $varName, $$func, $__call)
  {{php-id-start}}{{php-id-chars}}*
  ##! Curly brace expression (e.g., ${expr}, ${'func'})
  \s*{.+}
  ##!=>
  ##!=> noise
  ##!=>
  ##! Function call with optional arguments
  \(.*\)
##!<
@ Telegram