What’s the main benefit of using eval() in JavaScript?

by

The eval function is best used: Never.

It’s purpose is to evaluate a string as a Javascript expression. Example:

eval('x = 42');

It has been used a lot before, because a lot of people didn’t know how to write the proper code for what they wanted to do. For example when using a dynamic name for a field:

eval('document.frm.'+frmName).value = text;

The proper way to do that would be:

document.frm[frmName].value = text;

As the eval method executes the string as code, every time that it is used is a potential opening for someone to inject harmful code in the page. See cross-site scripting.

There are a few legitimate uses for the eval function. It’s however not likely that you will ever be in a situation where you actually will need it.

More Related Contents:

  1. Why is using the JavaScript eval function a bad idea?
  2. When is JavaScript’s eval() not evil?
  3. Executing elements inserted with .innerHTML
  4. Convert a string to a template string
  5. Are eval() and new Function() the same thing?
  6. Calculate string value in javascript, not using eval
  7. (1, eval)(‘this’) vs eval(‘this’) in JavaScript?
  8. Why does JavaScript’s eval need parentheses to eval JSON data?
  9. Is it possible to achieve dynamic scoping in JavaScript without resorting to eval?
  10. Why {} + {} is NaN only on the client side? Why not in Node.js?
  11. Is Javascript eval() so dangerous? [duplicate]
  12. Specify scope for eval() in JavaScript?
  13. Eval is evil… So what should I use instead?
  14. what does eval do and why its evil? [duplicate]
  15. Safely sandbox and execute user submitted JavaScript?
  16. Accessing or creating nested JavaScript objects with string key without eval
  17. Restricting eval() to a narrow scope
  18. Why the open quote and bracket for eval(‘(‘ + jsonString+ ‘)’) when parsing json string
  19. What are the Alternatives to eval in JavaScript?
  20. How to code a calculator in JavaScript without ‘eval’
  21. Context-preserving eval
  22. eval javascript, check for syntax error
  23. Alternatives to JavaScript eval() for parsing JSON
  24. Alternative to eval() javascript [duplicate]
  25. Exploiting JavaScript’s eval() method
  26. JQuery getJSON – ajax parseerror
  27. How do I set/unset a cookie with jQuery?
  28. How can I close a dropdown on click outside?
  29. In Javascript/jQuery what does (e) mean?
  30. What is the difference between Unary Plus/Number(x) and parseFloat(x)?

Leave a Comment