AC-9509: Scheduled operation improvements.

Author: sreenia806

lib/internal/Magento/Framework/Filter/Input/MaliciousCode.php

@@ -51,7 +51,7 @@ public function __construct(?PurifierInterface $purifier = null)
         //base64 usage
         '/src=[^<]*base64[^<]*(?=\/*\>)/Uis',
         //command line injections
-        '/[|$`;!]/',
+        '/[|$`;!&]/',
     ];
 
     /**

lib/internal/Magento/Framework/Filter/Test/Unit/Input/MaliciousCodeTest.php

@@ -51,8 +51,11 @@ public function testFilter($input, $expectedOutput)
     {
         $this->purifier->expects(self::atLeastOnce())
             ->method('purify')
-            ->willReturn($expectedOutput);
-
+            ->will(
+                $this->returnCallback(function ($arg) {
+                    return $arg;
+                })
+            );
         self::assertEquals($expectedOutput, $this->filter->filter($input));
     }
 
@@ -132,7 +135,7 @@ public function filterDataProvider()
             ],
             'Nested malicious tags' => [
                 '<scri<script>pt>alert(1);</scri<script>pt>',
-                'alert(1);',
+                'alert(1)',
             ],
             'Nested scripts' => [
                 '<?php echo "test" ?>',
@@ -146,6 +149,10 @@ public function filterDataProvider()
                 '<?=$test?>',
                 '',
             ],
+            'Commandline injections' => [
+                'ping -c3 www.example.com && links www.sample.com',
+                'ping -c3 www.example.com  links www.sample.com',
+            ],
             'Null Value' => [null, ''],
         ];
     }