9 lines
311 B
Plaintext
9 lines
311 B
Plaintext
|
== Ask Yourself Whether
|
||
|
|
|
||
|
|
* OS command name or parameters are user-controlled.
|
||
|
|
* The relative path of the OS command is specified.
|
||
|
|
* OS commands are not executed in an isolated/sandboxed environment.
|
||
|
|
* OS command are executed with high privileges.
|
||
|
|
|
||
|
|
There is a risk if you answered yes to any of those questions.
|