Section
11.1.4
Sub Level
General
The use of operating system commands and native executables should be minimized.
Natural Webagent
This does not apply to webAgent.
PHP
Avoid using system calls whenever possible, such as system(), exec(), etc. Never use the eval() function. System calls introduce command injection vulnerabilities into an application