summaryrefslogtreecommitdiffstats
path: root/showdependencygraph.cgi
diff options
context:
space:
mode:
authorterry%mozilla.org <>2000-03-08 03:22:41 +0100
committerterry%mozilla.org <>2000-03-08 03:22:41 +0100
commitd38fe0e5cab4a7efaba8a79a22a85b0e67817441 (patch)
treed090c36e14e128eb6c65e3b4d5d576ba78647650 /showdependencygraph.cgi
parent77f66018f328fe5321fa95d76515a187231ad1f0 (diff)
downloadbugzilla-d38fe0e5cab4a7efaba8a79a22a85b0e67817441.tar.gz
bugzilla-d38fe0e5cab4a7efaba8a79a22a85b0e67817441.tar.xz
Patch by Brian Duggan <bduggan@oven.com> -- security improvements.
Diffstat (limited to 'showdependencygraph.cgi')
-rwxr-xr-xshowdependencygraph.cgi1
1 files changed, 1 insertions, 0 deletions
diff --git a/showdependencygraph.cgi b/showdependencygraph.cgi
index b15fe8d44..f15534be3 100755
--- a/showdependencygraph.cgi
+++ b/showdependencygraph.cgi
@@ -26,6 +26,7 @@ use strict;
require "CGI.pl";
my $id = $::FORM{'id'};
+die "Invalid id: $id" unless $id =~ /^\s*\d+\s*$/;
my $urlbase = Param("urlbase");
my %seen;