[Perl-beginners] accessing array

[Perl-beginners] accessing array

	Shlomi Fish
	Jun 2, 2011 at 5:39 am

On Thursday 02 Jun 2011 01:23:23 rodeored wrote:
This code produces the following 3 lines:
foreach $twords(@topTypes)
{
$output.="<p>".commify_series(@$twords)."</p>";
}

I should note that there's a risk of HTML-injection / Cross-site-scripting
(XSS) attack here:

http://en.wikipedia.org/wiki/Cross-site_scripting

Regards,

Shlomi Fish

--
-----------------------------------------------------------------
Shlomi Fish http://www.shlomifish.org/
Chuck Norris/etc. Facts - http://www.shlomifish.org/humour/bits/facts/

"My name is Inigo Montoya. You forced my father to write XSLT. Prepare to die!
And be thankful I don't force you to write XSLT."

Please reply to list if it's a mailing list post - http://shlom.in/reply .

Search Discussions

Discussion Posts

Shawn wilson: You're redefining the $output variable each iteration leaving you with the last element. You might try something like: last if defined @$twords That's why you want to literate over the list and stop at the first defined value. BTW, use strict; use warnings

Follow ups

Shawn wilson: You don't mean that if @twords contained something like: "" could be a bad thing? :) All joking aside, this is one of many reasons I use tt on the back end and esapi on the front end. I probably don't test as much as I should and might get got. But it is good practice to find apis that were built with security in mind and use them. ... and for my next trick, I will redo RSA's ECC PKI in 100% perl :)

Related Discussions

Discussion Navigation

view	thread \| post
posts	‹ prev \| 4 of 5 \| next ›

Discussion Overview

group	beginners @
categories	perl
posted	Jun 1, '11 at 10:25p
active	Jun 2, '11 at 5:59a
posts	5
users	4
website	perl.org

font	variable	Hotkey: f
user style	avatars	Hotkey: a

[Perl-beginners] accessing array

Search Discussions

Discussion Posts

Related Discussions

4 users in discussion