# group_chooser.cgi
# This CGI generated the HTML for choosing a group or list of groups.
+$trust_unknown_referers = 1;
require './web-lib.pl';
&init_config();
&ReadParse(undef, undef, 2);
print "sel = new Array($len);\n";
print "selr = new Array($len);\n";
for($i=0; $i<$len; $i++) {
- print "sel[$i] = \"$ul[$i]\";\n";
+ print "sel[$i] = \"".
+ "e_escape($ul[$i], '"')."\";\n";
@ginfo = getgrnam($ul[$i]);
if (@ginfo) {
@mems = &unique( split(/ /, $ginfo[3]),
# user_chooser.cgi
# This CGI generated the HTML for choosing a user or list of users.
+$trust_unknown_referers = 1;
require './web-lib.pl';
&init_config();
&ReadParse(undef, undef, 2);
print "sel = new Array($len);\n";
print "selr = new Array($len);\n";
for($i=0; $i<$len; $i++) {
- print "sel[$i] = \"$ul[$i]\";\n";
+ print "sel[$i] = \"".
+ "e_escape($ul[$i], '"')."\";\n";
@uinfo = getpwnam($ul[$i]);
if (@uinfo) { print "selr[$i] = \"$uinfo[6]\";\n"; }
else { print "selr[$i] = \"???\";\n"; }