TaintedShell
Emitted when user-controlled input can be passed into an exec call or similar.
<?php
$command = $_GET["command"];
runCode($command);
function runCode(string $command) {
exec($command);
}
Emitted when user-controlled input can be passed into an exec call or similar.
<?php
$command = $_GET["command"];
runCode($command);
function runCode(string $command) {
exec($command);
}