Changes

Jump to: navigation, search

WebAppSec/Secure Coding Guidelines

22 bytes added, 20:41, 27 January 2011
Image Upload: Asked why.
'''Upload Verification'''
*Ensure the image dimensions are within the defined range for the application (example 50x50 to 200x200) . ''Interesting. Why?''
*Use image rewriting libraries to verify the image is valid and to strip away extraneous content.
*Set the extension of the stored image to be a valid image extension based on the detected content type of the image from image processing (e.g. do not just trust the header from the upload).
Confirm
574
edits

Navigation menu