exec - Returns last line of commands output
passthru - Passes commands output directly to the browser
system - Passes commands output directly to the browser and returns last line
shell_exec - Returns commands output
\`\` (backticks) - Same as shell_exec()
popen - Opens read or write pipe to process of a command
proc_open - Similar to popen() but greater degree of control
pcntl_exec - Executes a program
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const js2xmlparser = require('js2xmlparser'); | |
| const fs = require('fs'); | |
| const tmp = require('tmp'); | |
| const rimraf = require('rimraf'); | |
| const child_process = require('child_process'); | |
| function createFont(prefix, name, charsToLigature) { | |
| let font = { | |
| "defs": { | |
| "font": { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| * @name SSTI | |
| * @kind path-problem | |
| * @id java/ssti | |
| */ | |
| import java | |
| import semmle.code.java.dataflow.TaintTracking | |
| import semmle.code.java.dataflow.FlowSources | |
| import DataFlow |
