[TYPO3-core] RFC: fix bug #3834 protect t3lib_formmail against abuse

Martin Kutschker martin.kutschker-n0spam at no5pam-blackbox.net
Tue May 1 20:51:18 CEST 2007


This is a ptach request for trunk and TYPO3-4_1.

Problem: t3lib_formmail could use is_uploaded_file() to prevent an abuse 
with a manipluated $_FILES array.

Solution: check file and log abuse.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: bug_3834.diff
Type: text/x-diff
Size: 1898 bytes
Desc: not available
Url : http://lists.netfielders.de/pipermail/typo3-team-core/attachments/20070501/31b9dc66/attachment.bin 

More information about the TYPO3-team-core mailing list