I’m wondering if Eval() is the only option I really have for calling scripts

Question

0

Asked: June 5, 20262026-06-05T01:44:05+00:00 2026-06-05T01:44:05+00:00

I’m wondering if Eval() is the only option I really have for calling scripts

0

I’m wondering if Eval() is the only option I really have for calling scripts on my server and also executing the javascript on those files.

I see every where about security issue with Eval and people don’t recommend it – so is there any safe way to request files with javascript and execute that JS ?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-05T01:44:07+00:00

Editorial Team

2026-06-05T01:44:07+00:00Added an answer on June 5, 2026 at 1:44 am

No, you don’t have to eval, although if you trust the input doing so is alright. It is still better to transfer only data and not running code.

You can dynamically create a script tag:

var script = document.createElement('script');
script.src = 'path/to/javascript/to/run';
document.body.appendChild(script);

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m wondering if Eval() is the only option I really have for calling scripts

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply