[pmwiki-devel] strange conversions: a FmtPageName bug
Patrick R. Michaud
pmichaud at pobox.com
Sun Mar 9 10:11:08 CDT 2008
On Sun, Mar 09, 2008 at 02:57:35PM +0000, Hans wrote:
> I am in favour of implementation of both measures (initialization
> within functions and variable substitutions for capital first letter
> variables only in FmtPageName.
>
> At least it will blunt the aggressive var substitutions.
Fair enough -- however, for the security reasons mentioned
I still highly recommend that values from wiki pages do
not get stored directly into $...Fmt variables.
Pm
More information about the pmwiki-devel
mailing list