secure-code-warrior-for-github[bot]
commented
3 years ago Micro-Learning Topic: OS command injection (Detected by phrase)
In many situations, applications will rely on OS provided functions, scripts, macros and utilities instead of reimplementing them in code. While functions would typically be accessed through a native interface library, the remaining three OS provided features will normally be invoked via the command line or launched as a process. If unsafe inputs are used to construct commands or arguments, it may allow arbitrary OS operations to be performed that can compromise the server.
OS Command Injection