Comment

Tech Note: The "Email an Article" Makeover, Now Mobile-Friendly

49
Charles1/17/2017 3:23:20 pm PST

re: #38 thedopefishlives

Caveat: Not if done properly. A bonehead could eff it up but good, if he/she tried.

Yes - that’s why the $mjml variable is passed through the escapeshellarg() function, to make sure it can’t be used to execute any arbitrary shell commands.