Skip to content

hazzardweb/imageselect-docs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
credits.md
credits.md
 
 
debugging.md
debugging.md
 
 
installation.md
installation.md
 
 
optionsjs.md
optionsjs.md
 
 
optionsphp.md
optionsphp.md
 
 
security.md
security.md
 
 
toc.md
toc.md
 
 
upgrade.md
upgrade.md
 
 

Repository files navigation

Security

Allowing users to upload files to the server can be dangerous. But if you don't allow to upload anything else than images everything is fine.

One other thing will be the crop option. After the image is uploaded and the user makes the crop selection a request is ent back to the server with the image name and crop information.

The image name can be easily changed to someone's else image so the resize will be applied on that one. To fix this in the before_crop callback described you can check if that image belongs to the current user.

About

http://docs.hazzardweb.com/imageselect

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published