Item1781: Uploading files can trigger taint errors if certain plugins are installed
Current State: Closed
Released In: 1.0.7
Target Release: patch
Applies To: Engine
This bug requires
- That you have a perl of a version that has a buggy CPAN lib
- That you have a plugin that uses beforeAttachmentSaveHandler
- You are born under an unlucky star
But none the less, it has been seen and should be fixed.
The fix is to avoid using the buggy CPAN lib which is actually also documented as not a good idea to use.
And instead use a more proven CPAN lib from the standard set distributed with perl
- 30 Jun 2009
There is an error in the unit tests.
- 01 Jul 2009