We've all heard about SQLi and XSS, but what about another big injection vector: Command Injection?
It's less common but just as critical if your app does anything on the command line. Plus, it's not as easy to blindly escape be done... 😯
https://securinglaravel.com/security-tip-watch-out-for-command/#Laravel
