Is eval and execute still dangerous in ASP/VBScript if no user-defined data get passed through them?
This is more of an “ethical” question than a technical question. It’s very obvious why Eval() and Execute() are dangerous if you allow user-defined data/variables to get passed through them. Howev…
No discussion yet. Be the first to share your thoughts!