| AND OR | string words | *
array handling
communication
databases
directories
file handling
forms
html and code
image editing
image handling
information
sessions and co
string handling
manual for escapeshellarg | search for "escapeshellarg"

escapeshellarg

(PHP 4 >= 4.0.3, PHP 5)

escapeshellarg -- escape a string to be used as a shell argument

Description

string escapeshellarg ( string arg)

escapeshellarg() adds single quotes around a string and quotes/escapes any existing single quotes allowing you to pass a string directly to a shell function and having it be treated as a single safe argument. This function should be used to escape individual arguments to shell functions coming from user input. The shell functions include exec(), system() and the backtick operator. A standard use would be:

<?php
system('ls '.escapeshellarg($dir));
?>

See also escapeshellcmd(), exec(), popen(), system(), and the backtick operator.

Manual © 2001-2008 The PHP Group
© 2008 phparadise | go to the top | search phparadise | generated in 0.026 seconds

17 hits by 4 users in the last 30 minutes.