http://qs321.pair.com?node_id=127143


in reply to Re: More with HTML:Template
in thread More with HTML:Template

open(SEE, "< ../$value") or die "The File could not be opened."

This is an improvement, but not really secure. There are probably some files the user should not acccess, and this allows (some of) them to be accessed with a bit of guessing on their path. To make this secure one should check to make sure $value only contains a certain set of characters, probably excluding /.