diff options
Diffstat (limited to 'sitesummary-collector.cgi')
| -rw-r--r-- | sitesummary-collector.cgi | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/sitesummary-collector.cgi b/sitesummary-collector.cgi index 5dcf972..c9fbf86 100644 --- a/sitesummary-collector.cgi +++ b/sitesummary-collector.cgi @@ -135,8 +135,12 @@ sub process_entry { } rename $dirname, $newdir || die; + + $ENV{"PATH"} = ""; for my $handler (<$handlerdir/*>) { - `$handler $newdir $status`; + # Untaint script path + $handler =~ m/^([^;]*)$/; $handler = $1; + system("$handler", "$newdir", "$status"); } } |