On 13 Dec 2007, at 22:36, Mesdaq, Ali wrote:
There is also input via url which is actually a little more worrisome
than form input. I wonder if there is possible way the Catalyst
dispatch
internals can be exploited in this manner. Maybe thats an area thats
already been reviewed but just mentioning it to throw it out there.
$c->req->parameters includes query arguments and body/form parameters,
so is there some other issue?
_______________________________________________
List: [email protected]
Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/[EMAIL PROTECTED]/
Dev site: http://dev.catalyst.perl.org/
