Do you know where your variables are? | |
PerlMonks |
Security bug in CGI::Lite::escape_dangerous_chars()by thraxil (Prior) |
on Feb 11, 2003 at 19:16 UTC ( [id://234497]=perlnews: print w/replies, xml ) | Need Help?? |
this item just showed up on bugtraq. the jist is that CGI::Lite's escape_dangerous_chars() misses a few dangerous characters. i haven't confirmed the vulnerability myself, but if you're using CGI::Lite, you may want to take a closer look. hasn't every perl programmer read phrack?
Back to
Perl News
|
|