Command Injection

{1} User Input Verification
"Command injection problems occur when untrusted data is placed into data that is
passed to a compiler or interpreter, where
the data, if it is formatted in a particular way,
can be treated as a system command
[Howard]"
system(user_input);