• @jaybone
    link
    252 months ago

    It can’t actually spawn shell commands (yet.) But some idiot will make it do that, and that will be a fun code injection when it happens, watching the mainstream media try to explain it.

    • odd
      link
      fedilink
      22 months ago

      “Why the latest exploits are actually a good sign”

      • The Verge
      • @jaybone
        link
        12 months ago

        This will be the next SQL injection from the PHP days when they can’t bind parameters.