Beefy Boxes and Bandwidth Generously Provided by pair Networks Frank
go ahead... be a heretic
 
PerlMonks  

Re: CGI textfield injection

by Tanalis (Curate)
on Jul 28, 2005 at 21:03 UTC ( #479132=note: print w/ replies, xml ) Need Help??


in reply to CGI textfield injection

I could, but I won't. While your intentions might be honourable enough, there's no guarantee that the next person who reads this thread will have the same innocuous intentions.

You can almost certainly set up suitable logging via your web server to trap the request that's being made that's causing the malicious content to be injected. That should allow you to figure out how to simulate the request, and hence help you close the hole.

Sorry to not be more help.

Update: Yet another grammatical fix.


Comment on Re: CGI textfield injection
Re^2: CGI textfield injection
by cmic (Novice) on Jul 29, 2005 at 12:14 UTC
    Hello Foxclub. I do agree with your explanations. I'm gonna find a way to test a similar idea and get the client/server messages to guess what happens. I understand it could be dangerous to publish such code here.
    Next time, maybe...
    -- cmic. Life helps. Perl Too.

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://479132]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others pondering the Monastery: (4)
As of 2014-04-21 01:37 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    April first is:







    Results (489 votes), past polls