I do not think that any of us were trying to be mean or nasty. We simply want the world to know that rolling your own CGI parser can introduce serious security holes.