The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
#1
|
|||
|
|||
VB Attachment Validation
Given the currently un-patched Windows vulnerability out there regarding rogue .wmf files, I have a question. Does VB actually check the code of the file supplied (i.e. through a gd call in PHP) or is simply checking the extension of the file?
If it simply checks the extension, is anyone one else, who allows file uploads, doing anything to screen files more securely? |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|