You must log in or register to comment.
It can’t actually spawn shell commands (yet.) But some idiot will make it do that, and that will be a fun code injection when it happens, watching the mainstream media try to explain it.
“Why the latest exploits are actually a good sign”
- The Verge
This will be the next SQL injection from the PHP days when they can’t bind parameters.
