Perl Monk, Perl Meditation | |
PerlMonks |
Re^3: Vulnerabilities when editing untrusted code... (compiletime injection in regex)by LanX (Saint) |
on Oct 06, 2021 at 15:24 UTC ( [id://11137266]=note: print w/replies, xml ) | Need Help?? |
OK the term "eval-group" seems to refer to an optimization which concats 2 strings ° '' =~ ('STRING1'.'STRING2'); but if you don't bother splitting up the BEGIN you can still inject code at compiletime :(
Cheers Rolf °) and variable interpolation in general see re#'eval'-mode
In Section
Meditations
|
|