Re: Re: More with HTML:Template


Welcome to the Monastery
	PerlMonks

Re: Re: More with HTML:Template

by wog (Curate)

on Nov 23, 2001 at 21:10 UTC ( [id://127143]=note: print w/replies, xml )

Need Help??

in reply to Re: More with HTML:Template
in thread More with HTML:Template

open(SEE, "< ../$value") or die "The File could not be opened."
[download]

This is an improvement, but not really secure. There are probably some files the user should not acccess, and this allows (some of) them to be accessed with a bit of guessing on their path. To make this secure one should check to make sure $value only contains a certain set of characters, probably excluding /.

Comment on Re: Re: More with HTML:Template Select or Download Code

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://127143]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others cooling their heels in the Monastery: (5)

As of 2024-04-25 08:51 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found