If there is an application which allows .doc, .txt as well as html extension files . If are uploading a file which is actually a txt file in which malicious script is written and saving it as .HTML. So while accessing that particular file will that script will execute? Developer has made all the validation.
Aucun commentaire:
Enregistrer un commentaire