Item597: Added validatePerlModule check instead of untaintUnchecked. …

…Hope it works :)

git-svn-id: http://svn.foswiki.org/trunk@1682 0b4bb1d4-4e5a-0410-9cc4-b2b747904278

core/lib/Foswiki.pm

@@ -1870,6 +1870,24 @@ sub validatePattern {
 
 =begin TML
 
+---++ StaticMethod validatePerlModule( $module ) -> $module
+
+Validate a perl module in a parameter to $module so that
+random garbage are filtered out.
+
+=cut
+
+sub validatePerlModule {
+    my $module = shift;
+
+    # Remove all non alpha-numeric caracters and :
+    # Do not use \w as this is localized, and might be tainted
+    $module =~ s/[^a-zA-Z:]//g;
+    return $module;
+}
+
+=begin TML
+
 ---++ StaticMethod applyPatternToIncludedText( $text, $pattern ) -> $text
 
 Apply a pattern on included text to extract a subset