Is this code explotable in any way?
<?
$arg=$_REQUEST['arg'];
preg_replace("/([0-9]+)(.+)/e",'list($var,$var2)=array("$1","$2")',$arg);
echo "$var - $var2";
?>
Is it possible to use special characters or some other method to inject code?
I'm using similar code in some projects and I just want to make sure that it is safe.