Referring to this stackoverflow question a comment by "phoris" states that map(eval, raw_input().split()) is less secure. Can somebody explain how is is it less secure and in what context?
Asked
Active
Viewed 210 times
-1
Community
- 1
- 1
Adi Bhutani
- 3
- 2
-
@Tgsmith61591 Hardly so. That's a question about **lisp** not python. There are plenty of question specifically about python's `eval`, why close this as a duplicate to a lisp one? – Bakuriu Jun 08 '16 at 14:26
-
By the way: that is **not** a comment, but an answer by Phoris. As such you could provide a link directly to the answer. – Bakuriu Jun 08 '16 at 14:27
-
Also related [Why should exec() and eval() be avoided?](http://stackoverflow.com/q/1933451) – Bhargav Rao Jun 08 '16 at 14:28
1 Answers
3
Any context. It puts user input through eval(), which is a gaping wide security hole.
Ignacio Vazquez-Abrams
- 776,304
- 153
- 1,341
- 1,358