[OFBIZ-12301] SecuredUpload::isValidTextFile wrong check with uppercase - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: Release Branch 17.12, Trunk, 18.12.01
Fix Version/s: Release Branch 17.12, 18.12.01
Component/s: framework/security
Labels:
None

Sprint:
Bug Crush Event - 21/2/2015

Description

Today Zhujie from Ping'an Technology reported a bug in SecuredUpload::isValidTextFile where a wrong check is done

Note: this is a post-auth vuln., So we did not create a CVE

Attachments

Activity

People

Assignee:: Jacques Le Roux

Reporter:: Jacques Le Roux

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 10/Aug/21 11:01

Updated:: 11/Aug/21 16:10

Resolved:: 10/Aug/21 11:06