Welcome to the Monastery | |
PerlMonks |
Re: Re: More with HTML:Templateby wog (Curate) |
on Nov 23, 2001 at 21:10 UTC ( [id://127143]=note: print w/replies, xml ) | Need Help?? |
This is an improvement, but not really secure. There are probably some files the user should not acccess, and this allows (some of) them to be accessed with a bit of guessing on their path. To make this secure one should check to make sure $value only contains a certain set of characters, probably excluding /.
In Section
Seekers of Perl Wisdom
|
|