|
|
|
|
|
|
by ericfrederich
2490 days ago
|
|
|
/* wordexp is also rife with security "challenges", unless you pass it
WRDE_NOCMD it must support subshell expansion, and even if you
don't beause it has to support so much of the standard shell (all
the odd little variable expansion options for example) it is hard
to do without a subshell). It is probbably just plan a Bad Idea
to call in anything setuid, or executing remotely. */ |
|
|