[TYPO3-core] RFC: fix bug #3834 protect t3lib_formmail against abuse
Michael Stucki
michael at typo3.org
Tue May 1 21:11:46 CEST 2007
Hi Masi,
this is a no-brainer, so +1!
Cheers, michael
Am Dienstag, 1. Mai 2007 20:51 schrieb Martin Kutschker:
> Hi!
>
> This is a ptach request for trunk and TYPO3-4_1.
>
> Problem: t3lib_formmail could use is_uploaded_file() to prevent an abuse
> with a manipluated $_FILES array.
>
> Solution: check file and log abuse.
>
> Masi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.netfielders.de/pipermail/typo3-team-core/attachments/20070501/8101facb/attachment.pgp
More information about the TYPO3-team-core
mailing list