---- Changes since 1.340 ----
Added Redhat Enterprise release 5 support.
Requests to the /unauthenticated URL can never execute CGI programs, to provide an extra layer of security against URL escaping attacks.
+Fixed XSS bugs in pam_login.cgi.
print "$text{'pam_prefix'}\n";
print "<form action=$gconfig{'webprefix'}/pam_login.cgi method=post>\n";
-print "<input type=hidden name=cid value='$in{'cid'}'>\n";
+print "<input type=hidden name=cid value='","e_escape($in{'cid'}),"'>\n";
print "<table border width=40%>\n";
print "<tr $tb> <td><b>$text{'pam_header'}</b></td> </tr>\n";
if ($in{'message'}) {
# Showing a message
print "<tr> <td colspan=2 align=center>",
- $in{'message'},"</td> </tr>\n";
+ &html_escape($in{'message'}),"</td> </tr>\n";
print "<input type=hidden name=message value=1>\n";
}
else {
"<tt>$host</tt>"),"</td> </tr>\n";
$pass = "type=password" if ($in{'password'});
- print "<tr> <td><b>$in{'question'}</b></td>\n";
+ print "<tr> <td><b>",&html_escape($in{'question'}),"</b></td>\n";
print "<td><input name=answer $pass size=20></td> </tr>\n";
}