This is a migrated thread and some comments may be shown as answers.

Potential Security Hole

1 Answer 25 Views
Upload
This is a migrated thread and some comments may be shown as answers.
browniepoints
Top achievements
Rank 2
browniepoints asked on 10 Apr 2010, 03:21 PM
If you're using the upload component, please make sure that the folder you use for uploading (if it's underneath your application) does not have execute or execute script privileges. Otherwise, a user can upload an aspx file and execute it as part of your app.

1 Answer, 1 is accepted

Sort by
0
browniepoints
Top achievements
Rank 2
answered on 10 Apr 2010, 03:35 PM
BTW this isn't a risk with only the Telerik upload component but it should be considered whenever you accept uploads into your software.
Tags
Upload
Asked by
browniepoints
Top achievements
Rank 2
Answers by
browniepoints
Top achievements
Rank 2
Share this question
or