0

Member Chris pointed out an issue for my question where passing strings via exec() need special treatment to avoid spaces.

<?php
{
$ID = $_POST["ID"];
$RICHTEXT = $_POST["RICHTEXT"];
exec ("/usr/local/bin/php /home/admin/folder1/TESTS/process_it.php $ID $RICHTEXT >/dev/null &");
}
?>

Assuming $RICHTEXT is a page of html, how can $RICHTEXT be encoded to a single string that will work with exec()?

I have tried to replace all the white spaces with &nbsp; and it fails. I have also applied htmlentities and it fails. Any ideas?

Improve this question
3
  • I can't resist asking what you're doing passing text through the standard input of a php script from a php script. Is there some reason why you can't just include the php script and give it the input directly? Also, please tell me you're not really executing user input ;_; Commented Aug 2, 2011 at 19:23
  • This is the distilled version of the issue. The issue being that after using http POST, the processing of the posted data takes a long time. So rather than wait for the http response, I send the data to be processed to another php script. Commented Aug 2, 2011 at 19:32
  • See this question for the answer to your problem. At least write your $richtext and $id to a temporary file and pipe them into standard input instead of just pasting them right on the command line :( Commented Aug 2, 2011 at 19:42

1 Answer 1

Reset to default
1

You probably want to use escapeshellarg()

Something like:

exec (sprintf("/usr/local/bin/php /home/admin/folder1/TESTS/process_it.php %s %s >/dev/null &", escapeshellarg($ID), escapeshellarg($RICHTEXT)));
Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.