This is a multi-part message in MIME format.

------=_NextPart_000_0021_01C6BD97.5BD47740
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Hello

Now the variables leak despite what I do.

Can you guys confirm if this script isn't supposed to leak? It's totally =
mad, confusing all usernames.

Thanks

Andr=E9

PS: it's a simple test.cgi wich I am calling with=20
test.cgi?username=3Djane=20
test.cgi?username=3Djack=20
test.cgi?username=3Dstacey
.... and it keeps confusing all names.=20
I'm using 'local our's, so I think it shouldn't be leaking, and this is =
a problem at my mod_perl installation. So what could be causing this =
there? What do I do?


#!/usr/bin/perl -wT

use strict;
=20
use CGI;
=20
local our $q =3D new CGI;
local our $username =3D $q->param('username');

print "Content-type: text/html\n\n";
=20
defined $username and print "

Hello there, your username is =
$username
";
! defined $username and print "

[no username provided]
";

------=_NextPart_000_0021_01C6BD97.5BD47740
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable



charset=3Diso-8859-1">




Hello

 

Now the variables leak despite what I=20
do.

 

Can you guys confirm if this script =
isn't supposed=20
to leak? It's totally mad, confusing all usernames.

 

Thanks

 

Andr=E9

 

PS: it's a simple test.cgi wich I am =
calling with=20

test.cgi?username=3Djane

test.cgi?username=3Djack

test.cgi?username=3Dstacey

... and it keeps confusing all names. =

I'm using 'local our's, so I think it =
shouldn't be=20
leaking, and this is a problem at my mod_perl installation. So what =
could be=20
causing this there? What do I do?

 

 

#!/usr/bin/perl -wT

 

   use strict;
  =

  =20
use CGI;
  
   local our $q =3D new=20
CGI;
   local our $username =3D =
$q->param('username');

   print "Content-type: text/html\n\n";
  =20

   defined $username and print "<p>Hello there, your =

username is $username <br>";
   ! defined $username =
and print=20
"<p>[no username =
provided]<br>";
     =20


------=_NextPart_000_0021_01C6BD97.5BD47740--