#### use CGI; use CGI::Carp qw(fatalsToBrowser); doGetCGIvars(); print "Content-type: text/html\n\n"; # my $query = new CGI; # my $xiv = $query->param('xiv'); print "\$xiv=$xiv"; sub doGetCGIvars { ### for future revisions look into CGI::import_names my $VarName; my $query = new CGI; foreach $VarName ($query->param) { $assign = "\$$VarName = '" . $query->param($VarName) . "'"; &UnTaint($assign); ### print "$assign
"; eval($assign); } } sub UnTaint { my $test = shift; unless ($test =~ /^([^<]*)$/) { die "Couldn't untaint variable \$test:\n\n"; } } #### Software error: Substitution pattern not terminated at (eval 5) line 2. For help, please send mail to the webmaster (xxx@yyyyyyyyyy), giving this error message and the time and date of the error. Content-type: text/html $xiv=