Function held in String

gimp_hunter

I have a function, printlink which prints a hyper link ...anyways..from a form u can add a link, and in the form it adds: printlink(url, text). Now when i come to echo /printf the string, it just prints printlink(url, text). Is there anyway to execute this function from the sting...? sprintf doesn't work 🙁

thanks

superwormy

eval(), but it would have to be valid PHP, enclosed in <?php and ?> tags.


<?php

$html_and_php = " this is my text and html <?php print ("this is my php"); ?> and this is more html and text";

eval (" <?php " . $html_and_php . " ?> ");

?>

Be aware that this opens up severe security holes in your application, what if someone entered:

system (" rm / ");

OR:

mysql_query ("DELETE FROM tablename WHERE 1");