This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Direct Dynamic Code Evaluation ('Eval Injection')"
From OWASP
Weilin Zhong (talk | contribs) |
Weilin Zhong (talk | contribs) |
||
Line 16: | Line 16: | ||
[[Category:Lack of Input Validation]] | [[Category:Lack of Input Validation]] | ||
+ | |||
+ | [[Category:Attack]] | ||
+ | |||
+ | [[Category:Injection Attack]] |
Revision as of 20:04, 8 June 2006
This vulnerabilty can be exploited by code injection attacks and should be fixed using appropriate input validation on user input.
Related Attacks
Related Countermeasures
This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.