Print Page | Close Window

Potential security hole?

Printed From: Web Wiz Forums
Category: Web Wiz Web App Support Forums
Forum Name: Web Wiz Forums
Forum Description: Support forum for Web Wiz Forums application.
URL: https://forums.webwiz.net/forum_posts.asp?TID=1877
Printed Date: 30 March 2026 at 10:06pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com


Topic: Potential security hole?
Posted By: adawg
Subject: Potential security hole?
Date Posted: 17 April 2003 at 3:42pm

Taken directly from one of my users:

When someone tries to upload a file that is not allowed, you should just tell them that file is not allowed. If you give them the files that are allowed, then all someone has to do is masquerade his file as any of the accepted file types.

 


Replies:
Posted By: Dergal
Date Posted: 18 April 2003 at 5:51am

 

And do what with it?

the only certain file extensions are executed / processed... so if I upload a potentially dangerous ASP script and call it .jpg it will NOT be run... (unless there is something I don't know about)

Gerry


Print Page | Close Window

Forum Software by Web Wiz Forums® version 12.08 - https://www.webwizforums.com
Copyright ©2001-2026 Web Wiz Ltd. - https://www.webwiz.net