Re: [htmltmpl] Suggestion on how to eliminate Cross-site-scripting (XSS) bugs for good.
Brought to you by:
samtregar
Menu
▾
▴
Re: [htmltmpl] Suggestion on how to eliminate Cross-site-scripting (XSS) bugs for good.
|
From: Alex K. <ka...@ra...> - 2006-10-17 12:05:32
|
* Shlomi Fish <sh...@ig...> [October 17 2006, 14:23]:
> Now what I want is to sub-class HTML::Template so we'll always have to
> use "ESCAPE=HTML". If we want to override it we'll need to do the following:
There's `default_escape' option in recent HTML::Template. Is it not
enough?
--
Alex Kapranoff,
$n=["1another7Perl213Just3hacker49"=~/\d|\D*/g];
$$n[0]={grep/\d/,@$n};print"@$n{1..4}\n"
|
