[Date Prev][Date Next][Thread Prev][Thread Next] [Search] [Date Index] [Thread Index]

[MacPerl] Dangerous cgi-script

To: mac-perl@iis.ee.ethz.ch
Subject: [MacPerl] Dangerous cgi-script
From: claes@canit.se (Claes Bjorklund)
Date: Thu, 10 Jul 1997 16:23:05 +0200

Hi

Is this this cgi script dangerous? the idea with the script to let the
www-user do simple mathematics, but I am affraid they can do some thing
dangerous, is there any differnts with Unix or Mac?

Regards

\Claes

$math = $FORM{'calc'};
$res=eval "$math";
print <<ENDOFTEXT;
<html>
<title>Resultat</title>
<FORM method=post
action="matte2.cgi">
<input type=text size=50 maxlength=60 name="calc" value="$math">
<input type=submit value="Calculate">
</FORM>
<pre>
The Results

$math = $res
</pre>
</html>
ENDOFTEXT
1;

--------------------------------------------------
Claes Bjšrklund         http://www.canit.se/~claes
claes@canit.se          finger claes@uno.canit.se
--------------------------------------------------



***** Want to unsubscribe from this list?
***** Send mail with body "unsubscribe" to mac-perl-request@iis.ee.ethz.ch

Follow-Ups:
- Re: [MacPerl] Dangerous cgi-script
  - From: Aperghis-Tramoni Sebastian <madingue@cis.uni-muenchen.de>
- Re: [MacPerl] Dangerous cgi-script
  - From: "Brian L. Matthews" <blm@halcyon.com>

Prev by Date: Re: [MacPerl] Anyone...?
Next by Date: [MacPerl] DBM (fwd)
Prev by thread: Re: [MacPerl] DBM (fwd)
Next by thread: Re: [MacPerl] Dangerous cgi-script
Navigation: Date Index | Thread Index | Search | Other lists at bumppo.net