Issues » Upload of file types unrestricted

Issue: SI-42
Date: Mar 9, 2017 7:30:00 AM
Severity: Low
Requires Admin Access: Yes
Fix Version: n/a
Credit: shaohong wu
Description:

Authenticated users can uploaded bundles that contain files of any type.

Workaround:

None - This is by design to allow users to upload content with any extensions needed for their sites.

Issues

CERT issue CVE-2017-3189

Back to the top