[cgiapp] Bug in Data::FormValidator::Results

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cgiapp] Bug in Data::FormValidator::Results

Subject: [cgiapp] Bug in Data::FormValidator::Results
Date: Mon, 16 Feb 2004 23:57:32 +0100
From: Bodo Schulze <suppressed>

Hi all,

think I found a bug in _constraint_check_match() in
Data::FormValidator::Results bound into C::A via
CGI::Application::ValidateRM.

This subroutine checks the return value of user defined untainting
coderefs for false in the broad sense, not for undef. So if your field
containts the number zero and you check it using /(\d+)/, the return
value will be this number zero. _constraint_check_match interprets this
return value as false, so the check fails.

Hope, I didn't miss something obvious.

Best regards,

Bodo

---------------------------------------------------------------------
Web Archive:  http://www.mail-archive.com/suppressed/
              http://marc.theaimsgroup.com/?l=cgiapp&r=1&w=2
To unsubscribe, e-mail: suppressed
For additional commands, e-mail: suppressed

Follow-Ups:
- [cgiapp] Re: Bug in Data::FormValidator::Results
  - From: Mark Stosberg

Prev by Date: [cgiapp] CGI::Application 3.22 released
Next by Date: [cgiapp] Re: Bug in Data::FormValidator::Results
Previous by thread: [cgiapp] CGI::Application 3.22 released
Next by thread: [cgiapp] Re: Bug in Data::FormValidator::Results
Index(es):
- Date
- Thread

Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.