All Questions

2 questions

0votes

1answer

214views

Would it be useful from a security perspective to harden an interpreter like Python or NodeJS by removing support for unused features?

When hardening a system you want to remove any features that you do not need. I have been thinking about this concept from the perspective of interpreters like Python, NodeJS, PHP etc. and am ...

Blink

asked Nov 3, 2021 at 7:12

7votes

2answers

8kviews

Is PHP's eval() function vulnerable to code injection when executing a string built from an array?

I'm trying to learn more about PHP eval() exploitation and I came across this scenario: <?php $test = array(); $test[0] = "command0 "; $test[1] = $_GET["cmd1"]; $test[2] = "command2 "; $test[3] = ...

Robleh

asked Jan 10, 2018 at 3:16

Stack Exchange Network

All Questions

Would it be useful from a security perspective to harden an interpreter like Python or NodeJS by removing support for unused features?

Is PHP's eval() function vulnerable to code injection when executing a string built from an array?

Hot Network Questions

All Questions

Related Tags