jrtashjian/gist:1139779

## gistfile1.aw
<?php

// not safe
exec($_GET['query']);
exec( addslashes($_GET['query']) );

// THE SAFE ROUTE
exec( escapeshellarg($_GET['query']) );
	<?php

	// not safe
	exec($_GET['query']);
	exec( addslashes($_GET['query']) );

	// THE SAFE ROUTE
	exec( escapeshellarg($_GET['query']) );