- Plesk 10.x for Linux
- Plesk 11.x for Linux
- Plesk 12.0 for Linux
- Plesk 12.5 for Linux
PHP shell script was uploaded under the home directory of subscription.
How to prevent filesystem browsing with php shell scripts?
It's possible to disable
shell_exec and other functions in PHP by using the
Login to Plesk;
Open PHP settings: Domains > Example.com > PHP Settings;
Add the following line under Additional configuration directives:
CONFIG_TEXT: disable_functions =exec,shell_exec,proc_open,popen,curl_exec,show_source
Check the PHP documentation if you need more information on functions to disable.