On 2 February 2010 15:06, Shlomi Fish <shlo...@iglu.org.il> wrote: > > Ahmm... no. Are you physically unable to say anything in a social manner?
> > <<< > my %hash = (3 => <<"EOF"); > </script> > <script type="text/javascript"> > <!--- Insert nasty JS here ---> > </script> > <img src="spammer stuff."... > This is called a cross-site scripting attack ( > http://en.wikipedia.org/wiki/Cross-site_scripting ) and is very serious. If someone accessed my server, and rewrote my CGI script, I probably don't need to worry about cross-side scripting attacks. As it is, I specifically mentioned that this can be used to pass variables from Perl to the html document. For the other way, I asked for the OP to supply us with more information. > Please use a good JSON module to pass and encode data to JavaScript. No need to plead, and even so, there are other ways of passing data to either side; however, this is a beginner-level plain CGI question, which is a few levels lower than the point you are trying to make. -- Erez "The government forgets that George Orwell's 1984 was a warning, and not a blueprint" http://www.nonviolent-conflict.org/ -- http://www.whyweprotest.org/ -- To unsubscribe, e-mail: beginners-unsubscr...@perl.org For additional commands, e-mail: beginners-h...@perl.org http://learn.perl.org/
