|
|
|
|
|
|
by p410n3
1539 days ago
|
|
|
var_filter is more comparable to things like a form validation. You obviously don't use that for security neither. If you actually wanna pass stuff to system() or equivalent, you'll use escapeshellarg() That is if you actually use raw php. Very few (good) people do. (Kinda like ruby). And symfony / laravel have functions for both these use cases. Symfonys process takes care of this for example |
|
|