https://bugs.koozali.org/show_bug.cgi?id=11076
--- Comment #9 from Jean-Philippe Pialasse <[email protected]> ---
need untainting all variable before puting them in system call including
backtick call
a way to do
($variable) = $variable =~ /(\d+\.\d+)/;
regex in this case to filter a decimal number
please do not do .* as regexm this defeat the purpose of running tainted
--
You are receiving this mail because:
You are the QA Contact for the bug.
_______________________________________________
Mail for each SME Contribs bug report
To unsubscribe, e-mail [email protected]
Searchable archive at https://lists.contribs.org/mailman/public/contribteam/
