This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Talk:Code Injection

From OWASP

Revision as of 08:26, 15 July 2008 by Ratm owasp (talk | contribs) (New page: Is the php code injection example correct? I gave it more than one try on the php command line, and it doesn't seem to work. I think that this code snippet eval("\$myvar = \$x;"); is not ...)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

Is the php code injection example correct? I gave it more than one try on the php command line, and it doesn't seem to work. I think that this code snippet eval("\$myvar = \$x;");

is not exploitable, since the string that is evaluated is a constant. It works like a charm if you don't escape $x.

Retrieved from "https://wiki.owasp.org/index.php?title=Talk:Code_Injection&oldid=34117"