Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Using CodeIgniter Libraries & Helpers Encryption for upload helper
Encryption for upload helper
  • Offline richb201
    Posting Freak
  • *****
  • Posts: 1,004
    Threads: 300
    Joined: Sep 2017
    Reputation: 0
#1
Tongue  10-29-2022, 06:51 AM
(This post was last modified: 10-29-2022, 11:02 AM by richb201.)

I have gotten the do_upload working. But I now realize that the file is being uploaded to the server not the users pc. In my case the data needs to be kept secure during the trip. How can I encrypt the users data?

Perhaps I am doing this all wrong? I need to get data from an xls file into a mysql table. I need to check that the data is in the correct format during this trip. Is there a more direct way of doing this rather than using phpOffice/phpSpreadSheet? The code I am doing is 
PHP Code:
$data = array('upload_data' => $this->upload->data());
$reader = \PhpOffice\PhpSpreadsheet\IOFactory::createReader("Xlsx");
$iRc=$reader->setReadDataOnly(true);
$file $data["upload_data"]["full_path"];
$spreadsheet $reader->load($file); 
proof that an old dog can learn new tricks
Reply
  • Offline richb201
    Posting Freak
  • *****
  • Posts: 1,004
    Threads: 300
    Joined: Sep 2017
    Reputation: 0
#2
10-30-2022, 06:58 AM

Specifically I am concerned about XXE injection.
proof that an old dog can learn new tricks
Reply
  • Offline InsiteFX
    Super Moderator
  • ******
  • Posts: 6,333
    Threads: 291
    Joined: Oct 2014
    Reputation: 235
#3
10-31-2022, 12:36 AM

Please Read:

XML External Entity (XXE) Vulnerabilities and How to Fix Them

You really should upgrade your app to CodeIgniter 4 because of security reasons.
What did you Try? What did you Get? What did you Expect?

Joined CodeIgniter Community 2009.  ( Skype: insitfx )
Reply




Theme © iAndrew 2016 - Forum software by © MyBB