问题
i got the error Insecure dependency in parameter 3 of DBI::db=HASH(0xa32bd40)->do method call while running with -T switch while i modified the file show_bug.cgi
what is the reason?
回答1:
To untaint a variable, you must match it against a capturing regular expression. See perlsec - Perl Security for details.
回答2:
To untaint ie. variable $unsecure, a regular expression should be applied
my ($secure) = $unsecure =~ / (\d+) /x
or die q{we couldn't find number in $unsecure};
来源:https://stackoverflow.com/questions/16649845/showing-error-insecure-dependency-in-parameter-3-of-dbidb-hash0xa32bd40-do