Message 263240 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	berker.peksag
Recipients	berker.peksag, boyombo, josh.r
Date	2016-04-12.08:57:14
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1460451434.96.0.564102268019.issue26737@psf.upfronthosting.co.za>
In-reply-to

Content
> The scenario is a web application allowing people to upload csv files, but they can upload any files they like. This looks like a potential security flaw in the application. The application should reject any non-CSV files from being uploaded (instead of relying on the CSV module). Thanks for the report.

> The scenario is a web application allowing people to upload csv files, but they can upload any files they like.

This looks like a potential security flaw in the application. The application should reject any non-CSV files from being uploaded (instead of relying on the CSV module).

Thanks for the report.

History
Date	User	Action	Args
2016-04-12 08:57:15	berker.peksag	set	recipients: + berker.peksag, josh.r, boyombo
2016-04-12 08:57:14	berker.peksag	set	messageid: <1460451434.96.0.564102268019.issue26737@psf.upfronthosting.co.za>
2016-04-12 08:57:14	berker.peksag	link	issue26737 messages
2016-04-12 08:57:14	berker.peksag	create