I have one account where I can run cgi-programs ans some other where not.
On the first account I have a Perl-Program which handles the contact-form for all my homepages.
The latter call the Perl-Program by the form-tag with the post-command.
Some users now have problems, since NoScript notes
[NoScript XSS] Ein verdächtiger Upload zu [http://www.beinahe-gratis.de/cgi-bin/index.pl] von [http://www.skuriles.de/] wurde bereinigt und in eine GET-Anfrage (nur Download) umgewandelt.
What can I do?
contact form
-
Konrad
contact form
Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9.1.3) Gecko/20090824 Firefox/3.5.3
-
Giorgio Maone
- Site Admin
- Posts: 9524
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: contact form
You've got three choices, either
- put the Perl program on the same domain of the page calling it, or
- tell your users to whitelist www.beinahe-gratis.de or
- use GET instead of POST as the form method.
Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.1.3) Gecko/20090824 Firefox/3.5.3 (.NET CLR 3.5.30729)