Bug #106868 for HTML-FormFu: CGI::param called in list context

Fri Sep 04 02:10:00 2015 SREZIC [...] cpan.org - Ticket created

Subject:

CGI::param called in list context

Running the test suite produces a number of warnings in the form: CGI::param called in list context from /tmpfs/.cpan-build/2015090200/HTML-FormFu-2.01-M90Xvb/blib/lib/HTML/FormFu.pm line 317, this can lead to vulnerabilities. See the warning in "Fetching the value or values of a single named parameter" at /opt/perl-5.20.3-RC2/lib/site_perl/5.20.3/CGI.pm line 404. Probably you should check if there's really a context problem here, or if not, use the new multi_param method. To be compatible with older CGI, you could do it like this: my @foo = $q->can('multi_param') ? $q->multi_param('key') : $q->param('key'); (Or likewise using defined &CGI::multi_param if you're using the non-OO interface)

Fri Jun 03 15:38:37 2016 nigel.metheringham [...] gmail.com - Correspondence added

Fix was put in to suppress warnings - https://github.com/fireartist/HTML-FormFu/commit/ee79cf689f075f8a64d96a5e467875242caa9078 This was in release 2.02

Fri Jun 03 15:38:38 2016 The RT System itself - Status changed from 'new' to 'open'

Fri Jun 03 15:38:43 2016 nigel.metheringham [...] gmail.com - Status changed from 'open' to 'resolved'

Fri Jun 03 15:38:43 2016 nigel.metheringham [...] gmail.com - Fixed in 2.02 added