I would make sure you include this stuff:

use CGI;

$CGI::DISABLE_UPLOADS = 0;  # enable uploads
$CGI::POST_MAX = 1048576;   # limit the maximum upload size to 1MB
my $q = new CGI;            # OK to create new CGI object now

# make the environment safer as recommended in Perlsec
delete @ENV{qw(IFS CDPATH ENV BASH_ENV)};

# you usually have to set this to keep taint happy
$ENV{'PATH'}   = $some_paths; # typically /usr/bin:/usr/local/bin

$ENV{'TMPDIR'} = $my_temp_dir; # aim CGI.pm at a local dir
[download]

cheers

tachyon

s&&rsenoyhcatreve&&&s&n.+t&"$'$`$\"$\&"&ee&&y&srve&&d&&print