Comunitatea PHP Romania
 

 
escapeshellcmd
Manual PHP
ÎnapoiÎnainte

escapeshellcmd

(PHP 3, PHP 4 , PHP 5)

escapeshellcmd -- escape shell metacharacters

Description

string escapeshellcmd ( string command)

escapeshellcmd() escapes any characters in a string that might be used to trick a shell command into executing arbitrary commands. This function should be used to make sure that any data coming from user input is escaped before this data is passed to the exec() or system() functions, or to the backtick operator. A standard use would be:

<?php
$e = escapeshellcmd($userinput);

// here we don't care if $e has spaces
system("echo $e");
$f = escapeshellcmd($filename);

// and here we do, so we use quotes
system("touch \"/tmp/$f\"; ls -l \"/tmp/$f\"");
?>

See also escapeshellarg(), exec(), popen(), system(), and the backtick operator.

ÎnapoiAcasãÎnainte
escapeshellargSusexec

Ultimele discutii in forum RSS Forum

Ultimele articole Ultimele articole

Membri recenti

FreeFlow FreeFlow
raluev raluev
Razv4n Razv4n
lekinagar lekinagar
codvl codvl
LEOPARDU LEOPARDU
muzica99biz muzica99biz
alexsimi80 alexsimi80
viperback viperback
weuihera weuihera

Top membri

Pirahna Pirahna
la birou		carco carco
Bucuresti
Birkoff Birkoff
Bucuresti		Mascka Mascka
Braila
raul_ raul_
whooper whooper
Toronto ON
mihaitha mihaitha
Sibiu		gabysolomon gabysolomon
Bacau
oriceon oriceon
Constanta		garlicinicolae garlicinicolae

Newsletter


Email:
 inscriere
 renuntare
 
 Arhiva newsletter

Parteneriat
Copyright © 2001-2008 PHP Romania Add PHPRomania to Google Add PHPRomania to Del.icio.us Add PHPRomania to Stumbleupon Add PHPRomania to Yahoo! Add PHPRomania to Digg Add PHPRomania to Blink Flights to Budapest | Credit Cards | Loans | Advertising | Codigo da vinci
Ads: Partener Way2Web Nework: gazduire web | inregistrare domenii | web design | imobiliare | web hosting
Powered by Simplis