lang:

PHP

regex:

create_function\s?\(

description:

This function allows execution of commands. It is dangerous when used with user controlled parameters and may facilitate direct attacks against the web server.
tags:
dangerous function code execution
results