Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.
If data being used to construct a command is intended to be
a single argument,there might be character within data that cause it to be interpreted as multiple argumnets instead.
we've had multiple threads on injection, particularly SQL injection as that is where a lot of people are vulnerable when they code. Have you read them?