Perl-Sensitive Sunglasses | |
PerlMonks |
• WARNING security hole was (Re: Simple Email Script)by merlyn (Sage) |
on Mar 07, 2002 at 19:31 UTC ( [id://150100]=note: print w/replies, xml ) | Need Help?? |
Ow! If you don't know what you're doing, please don't put random CGI
scripts up on a net-available server!
In particular, this combination of lines: means that I can pass a newline-embedded string in the firstname parameter, and get a remote spam-sender or denial-of-service annoyer, courtesy of your script. Please. CGI is not for casual users. -- Randal L. Schwartz, Perl hacker
In Section
Seekers of Perl Wisdom
|
|