From 8c55588918e28862fb5b882102989625493e4752 Mon Sep 17 00:00:00 2001
From: AlberT <drAlberT@users.noreply.github.com>
Date: Thu, 28 May 2015 13:53:33 +0200
Subject: [PATCH] security fix, use escapeshellcmd()

---
 Mage/Console.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Mage/Console.php b/Mage/Console.php
index ef29492..3705066 100644
--- a/Mage/Console.php
+++ b/Mage/Console.php
@@ -212,7 +212,7 @@ class Console
 
         $return = 1;
         $log = array();
-        exec($command . ' 2>&1', $log, $return);
+        exec(escapeshellcmd($command . ' 2>&1'), $log, $return);
         $log = implode(PHP_EOL, $log);
 
         if (!$return) {