in reply to How to make relative URL if "cgi-bin" is above the web root?
Without commenting on the rest, I just noticed this:
That's an attack vector accident just waiting to happen.$docfile = "../../htdocs/cowboys/$FORM{'3'}";
If you're creating this code, you need to read up on web security. A lot.
If you're just configuring it, please pass my concern along to the author.
-- Randal L. Schwartz, Perl hacker
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.
|
|---|
In Section
Seekers of Perl Wisdom