+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Using CodeIgniter (https://forum.codeigniter.com/forumdisplay.php?fid=5)
+--- Forum: Libraries & Helpers (https://forum.codeigniter.com/forumdisplay.php?fid=11)
+--- Thread: Encryption for upload helper (/showthread.php?tid=84679)
Encryption for upload helper - richb201 - 10-29-2022
I have gotten the do_upload working. But I now realize that the file is being uploaded to the server not the users pc. In my case the data needs to be kept secure during the trip. How can I encrypt the users data?
Perhaps I am doing this all wrong? I need to get data from an xls file into a mysql table. I need to check that the data is in the correct format during this trip. Is there a more direct way of doing this rather than using phpOffice/phpSpreadSheet? The code I am doing isĀ
PHP Code:
$data = array('upload_data' => $this->upload->data());
$reader = \PhpOffice\PhpSpreadsheet\IOFactory::createReader("Xlsx");
$iRc=$reader->setReadDataOnly(true);
$file = $data["upload_data"]["full_path"];
$spreadsheet = $reader->load($file);
RE: Encryption for upload helper - richb201 - 10-30-2022
Specifically I am concerned about XXE injection.
RE: Encryption for upload helper - InsiteFX - 10-31-2022
Please Read:
XML External Entity (XXE) Vulnerabilities and How to Fix Them
You really should upgrade your app to CodeIgniter 4 because of security reasons.