in reply to RE: Possible Security Hole
in thread CGI and Traceroute

This may work for you:

use Untaint;

my @dirty_params = param('trace'); # your array
my @clean_params = untaint(qr(^[-.0-9a-zA-Z]+$), \@dirty_params);

[download]

Assuming all members of your array are launderable, you will be returned an array of clean values.

Cheers,
KM

In Section Seekers of Perl Wisdom