here's PHP dynamically generated function example, using the eval function example, I feel if the server allows the user to run a function that is very dangerous,


code is as follows:


<?
$a [' a ']=1;
$a [' b ']=1;
$a [' c ']=1;
$STR="function a () {global \ $a; the if (\ $a [' a ']==1 &&\ $a [' b ']==1 &&\ $a/' c '==1) {return' OK ';} else {return 'ERR;}}";
eval ($STR);
if (a ()=="OK") {
  Echo "GOOD";
} else {
  Echo "OH NO";
}

:

  • php5.3 goto
  • php ctype
  • PHP
  • nodejsPHPprint_r
  • php
  • php()
  • PHPob
  • php
  • php
  • PHPisset()unset()
  • PHP
  • php GUID
  • php is_numbericSQL
  • PHPstrlenmb_strlen
  • phppost
  • PHP empty
  • PHP
  • php


This concludes the body part