httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From m...@hyperreal.org
Subject cvs commit: apache-site bugdb.cgi
Date Sat, 09 Oct 1999 05:00:09 GMT
marc        99/10/08 22:00:09

  Modified:    .        bugdb.cgi
  Log:
  Add [ and ] to allowed characters.  Some more work is required to make
  full regexes work, but this is a reasonable solution for now.
  
  Revision  Changes    Path
  1.45      +1 -1      apache-site/bugdb.cgi
  
  Index: bugdb.cgi
  ===================================================================
  RCS file: /export/home/cvs/apache-site/bugdb.cgi,v
  retrieving revision 1.44
  retrieving revision 1.45
  diff -u -r1.44 -r1.45
  --- bugdb.cgi	1999/10/08 23:40:06	1.44
  +++ bugdb.cgi	1999/10/09 05:00:07	1.45
  @@ -373,7 +373,7 @@
   sub check_unsafe
   {
       local($str) = $_[0];
  -    unless($str =~ /^[\w@\.\- ]+$/) {
  +    unless($str =~ /^[\[\]\w@\.\- ]+$/) {
   	print "<FONT COLOR=\"red\">INVALID INPUT: $str</FONT>\n";
   	die("$0: invalid character (breakin attempt?) in \"$str\"");
       }
  
  
  

Mime
View raw message