diff options
author | Roberto C. Sanchez <roberto@connexer.com> | 2014-03-29 10:54:01 -0400 |
---|---|---|
committer | Roberto C. Sanchez <roberto@connexer.com> | 2014-03-29 10:54:01 -0400 |
commit | 71a39f4652cd51df814c930dd268f3c9ad2aee86 (patch) | |
tree | 5994350a603908c4e4d660bc9d72c4ec43dd648e /utilities/diatheke/cgi/diatheke.pl | |
parent | 03134fa5f6f25d92724ce4c183f9bbe12a9e37dc (diff) |
Imported Upstream version 1.6.0+dfsg
Diffstat (limited to 'utilities/diatheke/cgi/diatheke.pl')
-rwxr-xr-x | utilities/diatheke/cgi/diatheke.pl | 31 |
1 files changed, 29 insertions, 2 deletions
diff --git a/utilities/diatheke/cgi/diatheke.pl b/utilities/diatheke/cgi/diatheke.pl index ee36f11..8150d2c 100755 --- a/utilities/diatheke/cgi/diatheke.pl +++ b/utilities/diatheke/cgi/diatheke.pl @@ -1,5 +1,33 @@ #!/usr/bin/perl +######################################################################### +### WARNING: This is for demonstration purposes only. Do not deploy +### this CGI on a live website. There are security issues. +### You will likely be hacked if you try to deploy this on a +### live site. +### +### For a web Bible interface, please consider using +### SwordWeb, which can be also be installed on your +### server: http://www.crosswire.org/swordweb/ +######################################################################## + +# * +# * Copyright 2009 CrossWire Bible Society (http://www.crosswire.org) +# * CrossWire Bible Society +# * P. O. Box 2528 +# * Tempe, AZ 85280-2528 +# * +# * This program is free software; you can redistribute it and/or modify it +# * under the terms of the GNU General Public License as published by the +# * Free Software Foundation version 2. +# * +# * This program is distributed in the hope that it will be useful, but +# * WITHOUT ANY WARRANTY; without even the implied warranty of +# * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# * General Public License for more details. +# * + + # Typical Linux/Unix settings $err = "2> /dev/null"; $sword_path = "/home/sword"; # SWORD_PATH environment variable you want to use @@ -110,8 +138,7 @@ foreach $i (@values) { $range = $mydata; $range =~ tr/+/ /; $range =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; - $range = "-r \"$range\""; - $range = shell_escape($range); + $range = "-r '" . shell_escape($range) . "'"; } elsif ($varname eq "strongs") { |