#2 cant upload an avatar-jpg with .jpeg as endin - openmicroblogger

Type	To find
responsible:me	tickets assigned to you
tagged:"@high"	tickets tagged @high
milestone:next	tickets in the upcoming milestone
state:invalid	tickets with the state invalid
created:"last week"	tickets created last week
sort:number, importance, updated	tickets sorted by #, importance or updated
Combine keywords for powerful searching.
Use advanced searching »

#2 ✓resolved

cant upload an avatar-jpg with .jpeg as endin

Reported by Brian Jesse Hendrickson | August 27th, 2008 @ 02:15 AM | in 0.1

cant upload an avatar-jpg with .jpeg as ending. do you check about jpg only by filename ? this is a security hole.

Comments and changes to this ticket

Brian Jesse Hendrickson September 1st, 2008 @ 07:18 PM
- State changed from “new” to “resolved”
new code uses exif_imagetype() to verify uploaded filetype

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

a(nother) PHP implementation of the http://openmicroblogging.org standard for distributed microblogging. Compatible with identi.ca and laconi.ca

People watching this ticket

Brian Jesse Hendrickson

Voitto openmicroblogger → 0.1

New Billing System

cant upload an avatar-jpg with .jpeg as endin

Comments and changes to this ticket

Brian Jesse Hendrickson September 1st, 2008 @ 07:18 PM

Create your profile

People watching this ticket

Pages

Voitto openmicroblogger → 0.1

New Billing System

Keyword searching

cant upload an avatar-jpg with .jpeg as endin

Comments and changes to this ticket

Brian Jesse Hendrickson September 1st, 2008 @ 07:18 PM

Create your profile

People watching this ticket

Pages