Surely I will look into the security aspect, but at this moment the code fails because 'use CGI' cannot be clubbed with other things like 'use Net::LDAP' or 'IPC:System::Simple'. If I disable them I could execute it.
But disabling them will take away the entire purpose of the script i.e. automated user management.
#!/usr/bin/perl
use strict;
use CGI;
use CGI::Carp;
#create CGI query object to get the SSO from URL
my $query = CGI->new;
my $sso = $query->param("sso");
$sso = shift;
print "Content-type:text/html\r\n\r\n";
print "<html>";
print "<head>";
print "<title>Application Management Sysyem</title>";
print "</head>";
if($sso eq "")
{
print "<h1>\n\nERROR: SSO is EMPTY!</h1>\n\n";
}
else
{
use Proc::Background;
print "<body>";
print "<h2>You have entered $sso</h2>";
print "</body>";
print "</html>";
}
I really appreciate help.