> This is very dangerous:
>
> http://someserver.com/cgi-bin/script.pl?ls%3Brm%20-fr%20%2F%3B
>
> With that url, you'll be executing the following:
>
> system("/usr/bin/fms_registration ls;rm -fr /; /usr/bin/fmserverd");
>
Curtis thanks for the pointer I am aware that a few changes need to be
--- "Gavin Nelmes-Crocker [CobaltWorld]" <[EMAIL PROTECTED]> wrote:
> Guys, I've got a newbie question - I have been hacking at a perl script to
> change it to do what I want - it nearly does but I can't understand why the
> main bit isn't working. Basically the script gets sent a string from an
