<?php
$c
=$_GET['charset'];
$c=str_ireplace('UTF-16','BLOCKED',$c);
header('Content-Type: text/html; charset='.$c);
header('X-XSS-Protection: 0');
highlight_string(file_get_contents(__FILE__true));
$x=$_GET['x'];
$x=preg_replace('/<\w+/'''$x);
echo 
$x;
?> 



payload