As David said, this is not a good way to let people execute PHP code. For a robust solution, have a look at http://codepad.viper-7.com/ (it has a Github link). The idea is to do everything in a VM, where the PHP is executed in a jail. Even then, a new jail escape can put you in a bad position.
On Wed, Jul 3, 2013 at 7:03 PM, chirag sharma <[email protected] > wrote: > I have created an online PHP code executor at http://web.guru99.com > > Though I have checked all security aspects … do you experts see any major > flaw that I need to care of? > > -- > -- > NZ PHP Users Group: http://groups.google.com/group/nzphpug > To post, send email to [email protected] > To unsubscribe, send email to > [email protected] > --- > You received this message because you are subscribed to the Google Groups > "NZ PHP Users Group" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/groups/opt_out. > > > -- -- NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [email protected] --- You received this message because you are subscribed to the Google Groups "NZ PHP Users Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
