Home/ Questions/Q 3221234
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-17T15:51:10+00:00

I’m coding an application where I want to let the user learn javascript in

  • 0

I’m coding an application where I want to let the user learn javascript in this way:

  1. The user write javascript code on the browser like in an IDE.
  2. The user saves it and the code will be saved as a string in my backend No-SQL database (MongoDB/CouchDB).
  3. The user opens the application some days later and I pass that string to the web browser where the code will be executed with eval().

There will be only JSON data transferred between backend server and web browser. The server won’t do anything on the code string, it will only save it directly into the database.

Could this code possibly do any damage on the server side?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    On the server-side, no. Unless the scripts runs on IE and create multiple files disk. Or make some request to your system inserting billions of new entries…

    So you have to take care with requests (flood control), be careful with IE and be careful with SQL injections.

    Examples

    And the request I’m talking about could be something like:

    ajax.post("page_save_js.ext", "code=flood");

    Then each time it runs it will insert a new code, flooding the server. StackOverflow controls this flood using captcha after some requests in a short amount of time.

    • 0