>Number: 2918 >Category: mod_cgi >Synopsis: Multiple leading slashes in SCRIPT_NAME, REQUEST_URI >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Thu Aug 27 21:50:01 PDT 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3.1 >Environment: OSF1 betty V4.0 386 alpha Compiler = Digital C v.40 for Digital Unix >Description: When executing a CGI from another CGI (one that created a form) the SCRIPT_NAME and REQUEST_URI variables appear to have an extra proceeding slash, see example below. It also appears in the SCRIPT_FILENAME.
REQUEST_METHOD=POST REQUEST_URI=//csTAC/changeuser.cgi/form SCRIPT_FILENAME=/disk0/local/apache/share/htdocs//csTAC/changeuser.cgi SCRIPT_NAME=//csTAC/changeuser.cgi >How-To-Repeat: Have a CGI create a form that is sent to another CGI for parsing. >Fix: >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ] [If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request ] [from a developer. ] [Reply only with text; DO NOT SEND ATTACHMENTS! ]
