Escape a string to be used as a shell argument

Descrierea

string escapeshellarg ( string $arg )

escapeshellarg() adds single quotes around a string and quotes/escapes any existing single quotes allowing you to pass a string directly to a shell function and having it be treated as a single safe argument. This function should be used to escape individual arguments to shell functions coming from user input. The shell functions include exec(), system() and the backtick operator.

On Windows, escapeshellarg() instead replaces percent signs, exclamation marks (delayed variable substitution) and double quotes with spaces and adds double quotes around the string.

Parametri

arg: The argument that will be escaped.

Valorile întoarse

The escaped string.

Exemple

Example #1 escapeshellarg() example


<?php
system('ls '.escapeshellarg($dir));
?>

Istoricul schimbărilor

Versiune	Descriere
5.6.0	Valoarea implicită a parametrului `encoding` a fost schimbată pentru a coincide cu valoarea opțiunii de configurare default_charset.
5.4.43, 5.5.27, 5.6.11	Exclamation marks are replaced by spaces.

A se vedea și

escapeshellcmd() - Escape shell metacharacters
exec() - Execute an external program
popen() - Opens process file pointer
system() - Execute an external program and display the output
backtick operator