| CodeIgniter upload class question. |
[eluser]Dentafrice[/eluser]
Not sure if this is the correct section, please move it if it isn't. I own a semi-popular image uploading site (TehUpload [http://www.tehupload.com]) and have recently been "playing around" with CI. I had a feeling it would save me a ton of time when developing my site, and I was right. The thing is, the upload class doesn't "securely" check the image as I would like. You can easily mismatch the filename VIA the request (bla.jpg -> bla.php, and keep the content-type header) and it will easily upload the .php file. Will the upload class be improved to check the extension AS WELL as the file's integrity, not just the information supplied by the browser/user? |
| Messages In This Thread |
|
CodeIgniter upload class question. - by El Forum - 12-22-2008, 09:44 AM
CodeIgniter upload class question. - by El Forum - 12-22-2008, 12:07 PM
CodeIgniter upload class question. - by El Forum - 12-22-2008, 12:33 PM
CodeIgniter upload class question. - by El Forum - 12-22-2008, 12:43 PM
CodeIgniter upload class question. - by El Forum - 12-22-2008, 12:47 PM
CodeIgniter upload class question. - by El Forum - 12-22-2008, 12:49 PM
CodeIgniter upload class question. - by El Forum - 12-22-2008, 12:53 PM
CodeIgniter upload class question. - by El Forum - 12-23-2008, 06:47 PM
CodeIgniter upload class question. - by El Forum - 12-23-2008, 08:08 PM
|
