Beefy Boxes and Bandwidth Generously Provided by pair Networks
"be consistent"
 
PerlMonks  

Re: Any security holes?

by LanX (Saint)
on Jun 26, 2022 at 13:56 UTC ( [id://11145080]=note: print w/replies, xml ) Need Help??


in reply to Any security holes?

I think an attacker could at least inject HTML/JS/XSS into your web-page and damage the user.

One major rule is to mistrust any input and to filter to a minimal whitelist of allowed/expected characters.

see also

update

after wondering what $buffer means I realized that you don't even use strict and warnings ... 🤷🏽🤦🤷🏽

Cheers Rolf
(addicted to the Perl Programming Language :)
Wikisyntax for the Monastery

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://11145080]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others chanting in the Monastery: (7)
As of 2024-04-19 08:12 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found