--- misc/scripts/cgi/taillog.cgi	2001/05/13 00:01:54	1.3
+++ misc/scripts/cgi/taillog.cgi	2002/05/10 17:44:23	1.5
@@ -12,7 +12,12 @@ if (defined $grep) {
         $grepStr = "";
     }
     else {
-        $grepStr = " | grep $grep";
+        if ($grep =~ /^[a-zA-Z_\-0-9\.\/]+$/) {
+            $grepStr = " | grep $grep";
+        }
+        else {
+            $grepStr = "";
+        }
     }
 }
 else {