====== Shell Execution ======

These functions allow shell commands to be run on the server.

  *[[http://www.php.net/manual/en/language.operators.execution.php|backtick operator]]
  *[[phpfn>shell_exec]]
  *[[phpfn>system]]
  *[[phpfn>passthru]]
  *[[phpfn>popen]]
  *[[phpfn>proc_open]]
  *[[phpfn>pcntl_exec]]

These functions help with escaping input for shell execution;

  *[[phpfn>escape_shell_arg]]
  *[[phpfn>escape_shell_cmd]]

===== Exploits =====
[[security:attack:command_injection]]

----
//This function list is probably incomplete.//
See [[security:functions:catalog]] and [[security:web_application_security]]