Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming File Helper and Canonicalization issues
File Helper and Canonicalization issues
  • El Forum
    Guest
  •  
#1
07-08-2010, 07:10 AM

[eluser]dazed[/eluser]
Hi Guys,

Second issue so lets see if your responses are as quick as before Smile

I have created a form that once all the details have been entered creates a txt file. This all works, the issue I have is that it asks for what the file name should be.

Again this works until you get a little evil :roll:

if you type into the form that you want the filename to be ../../filename.txt it does not save the file in the correct place and causes a whole load of other issues.

Now I have tried xss_clean and a number of other form validation rules to try and encode the dots and slashes but none of them seem to work.

Have any of you got any best practices or countermeasure's to this issue??

Thanks for your help,

Dazed


Messages In This Thread
File Helper and Canonicalization issues - by El Forum - 07-08-2010, 07:10 AM
File Helper and Canonicalization issues - by El Forum - 07-08-2010, 09:13 AM
File Helper and Canonicalization issues - by El Forum - 07-08-2010, 09:31 AM
File Helper and Canonicalization issues - by El Forum - 07-08-2010, 10:02 AM
File Helper and Canonicalization issues - by El Forum - 07-08-2010, 10:12 AM



Theme © iAndrew 2016 - Forum software by © MyBB