WordPress.org

Ready to get started?Download WordPress

Forums

Comment Images
[resolved] Question about security (4 posts)

  1. lauritasita
    Member
    Posted 1 year ago #

    Hi,

    I absolutely love your plugin. I have a question about security. Since this plugin is used by visitors that are not logged into the WordPress site, I'm a little concerned about hackers that will try to upload a virus or some kind of malware to the site. Does your plugin contain any screening before the actual upload goes through? I am using WordPress 3.5.

    Thank you,

    Laurita

    http://wordpress.org/extend/plugins/comment-images/

  2. tommcfarlin
    Member
    Plugin Author

    Posted 1 year ago #

    Good question! The plugin does a check to make sure that users are only uploading images. That is, it looks for GIF, JPG, JPEG, and PNG before allowing the file to be saved.

    If the file isn't of that type, it rejects it.

    That said, I'd be lying if I said some creative hacker couldn't work around that, but I do what I can to make sure my stuff is as robust as possible. It's been downloaded quite a bit and I've had no complaints yet!

  3. YOUAREtehSCENE
    Member
    Posted 1 year ago #

    This work on 3.5 version of wordpress, their was another one plugin by the same name minus the 'S' and I [moderated] love it, someone needs to make a new one. I miss the comment images

  4. plymouthdesign
    Member
    Posted 1 year ago #

    Correct me if I am wrong, but it appears that you are just looking at the file extension, but not at other methods?

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags