WordPress.org

Forums

WooCommerce Pay to Upload
File upload security (1 post)

  1. Geert De Deckere
    Member
    Posted 2 years ago #

    If I'm correct you only check the file extension during upload. Also, the files are stored, with the same name, in the WP upload directory, directly accessible via the browser. This doesn't look too secure.

    The following document offers some thought on the matter:
    http://www.net-security.org/dl/articles/php-file-upload.pdf

    I'be interesting in talking about this and getting your opinion. Thanks.

    http://wordpress.org/extend/plugins/woocommerce-pay-to-upload/

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • WooCommerce Pay to Upload
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic

Tags