On 9 Jun 2001, at 11:17, Dave Newton wrote:
> I've not been able to come up with any reasonable CGI that would be
> creating a path that the user has any control over; why would one want
> to do that?
Drall, just as a for-instance. (http://freshmeat.net/projects/drall/)
Hmm. A really quick check of Drall's source code seems to
indicate it doesn't do any newline checking:
sub fix_path {
my $path = $_[0];
$path =~ s{\.+/}{/}g;
$path =~ s{/+}{/}g;
$path =~ s{http:/}{http://}i;
return($path);
}
But that's just a quick glance at the source, and there may be
other path fixing going on elsewhere. More research is definitely
called for.
--
Karen J. Cravens ([EMAIL PROTECTED])
