1. Introduced `eval'
to achieve simultaneously uniting separated single pages.
But see 2.
Newly wrapped `pdfinfo', thus there is now no need
to specify the page count at commandline.
2. That `eval'! command injection!
`base_name' is completely under malicious attackers' control.
Invoke this script with a valid pdf document
whose filename was offensively crafted.
e.g. test'])==__import__('os').system('rm -rf '+chr(47)).pdf
The above example will `rm -rf /'.
How about `rm -rf --no-preserve-root /'? :)
3. `eval' is fatally dangerous!
All user input are also fatally detrimental!
More privileged, more fatally lethal!