--- blosxom.cgi	2003-08-26 23:53:56.000000000 +0100
+++ blosxom-untainted.cgi	2005-03-14 11:00:37.000000000 +0000
@@ -1,5 +1,4 @@
-#!/usr/bin/perl
-
+#!/usr/bin/perl -T
 # Blosxom
 # Author: Rael Dornfest <rael@oreilly.com>
 # Version: 2.0
@@ -147,6 +146,7 @@
 # Plugins: Start
 if ( $plugin_dir and opendir PLUGINS, $plugin_dir ) {
   foreach my $plugin ( grep { /^\w+$/ && -f "$plugin_dir/$_"  } sort readdir(PLUGINS) ) {
+    $plugin =~ /(.+)/ and $plugin = $1;
     my($plugin_name, $off) = $plugin =~ /^\d*(\w+?)(_?)$/;
     my $on_off = $off eq '_' ? -1 : 1;
     require "$plugin_dir/$plugin";
@@ -171,7 +171,8 @@
     my(%files, %indexes, %others);
     find(
       sub {
-        my $d; 
+        my $d;
+	$File::Find::untaint = 1;
         my $curr_depth = $File::Find::dir =~ tr[/][]; 
         return if $depth and $curr_depth > $depth;