Come for the quick hacks, stay for the epiphanies. | |
PerlMonks |
Re^2: CGI to Dancer popup_menuby Your Mother (Archbishop) |
on Jan 15, 2015 at 16:57 UTC ( [id://1113364]=note: print w/replies, xml ) | Need Help?? |
A good habit for Template code is escape all template vars. That way DB/User-input strings can be plain/arbitrary without risk of XSS attacks. E.g.: <% name | html %>
In Section
Seekers of Perl Wisdom
|
|