ALL computer programming languages are vulnerable to command injection attack.
The majority of software vulnerabilities result from a few known kinds of coding defects. Common
software defects include buffer overflows, format string vulnerabilities, integer overflow, and
code/command injection. Some common languages such as C and C++ are vulnerable to all of
these defects. Languages such as Java are immune to some of these defects but are still prone to
code/ command injection and other software defects which lead to software vulnerabilities.