7 lines
364 B
Plaintext
7 lines
364 B
Plaintext
These minimum restrictions should be applied when handling file uploads:
|
|
|
|
* the file upload folder to restrict untrusted files to a specific folder.
|
|
* the file extension of the uploaded file to prevent remote code execution.
|
|
|
|
Also the size of the uploaded file should be limited to prevent denial of service attacks. This requirement is covered by the rule S5693.
|