5.3.8 The application protects against OS command injection

Verify that the application protects against OS command injection and that operating system calls use parameterized OS queries or use contextual command line output encoding. (C4)

Level 1 X
Level 2 X
Level 3 X
CWE NIST
78