Why should the PHP function `curl_exec` be disabled?

Question

Why should the PHP function `curl_exec` be disabled?

As you know, some php functions will be disabled in shared hosting environments. Search on Google, I found many lists of these features. one of these functions curl_exec, I can’t understand why this function should be disabled? How can this feature be vulnerable?

+3

security php curl

Ehsan Jul 15 '10 at 5:05

source share

2 answers

, - , script (, , DoS- - ..). )

- :

, curl_exec() cPanel. , curl_exec() - , .
Curl_exec() , .

+1

pkaeding 15 . '10 5:12

Kendall hopkins · Accepted Answer · 2010-07-15T05:11:05+0000

It can be used to create a self-request loop that blocks the server. It can also be used to personify requests to a site or proxy. If these are good enough reasons to disconnect curl_exex, it really depends on how much you trust the code.

Why should the PHP function `curl_exec` be disabled?

More articles: