matt
Aug 08, 2014, 8:49 PM
Hi,
I will need to implement file upload over the internet in my application. The server will be using secure connection (https).
When I saw "MultiUpload" demos my impression was: wow... this is exactly what I need.
But...
When I read that Multiupload is based on "swfupload"... I followed the link: https://code.google.com/p/swfupload/
I was surprised and confused seeing that:
Announcement
SWFUpload has not been under active development for several years. The existing SWFUpload code is stable but the Adobe Flash Player platform has significant bugs that have not been addressed since Flash Player v8; the platform SWFUpload originally targeted.
Warning: SWFUpload's .swf file suffers from a Cross Scripting vulnerability as described here: https://nealpoole.com/blog/2012/05/xss-and-csrf-via-swf-applets-swfupload-plupload/
My question here is in the title of that post. Is MultiUpload secure ? or is it safe enough to use it ?
Thank you,
Matt
I will need to implement file upload over the internet in my application. The server will be using secure connection (https).
When I saw "MultiUpload" demos my impression was: wow... this is exactly what I need.
But...
When I read that Multiupload is based on "swfupload"... I followed the link: https://code.google.com/p/swfupload/
I was surprised and confused seeing that:
Announcement
SWFUpload has not been under active development for several years. The existing SWFUpload code is stable but the Adobe Flash Player platform has significant bugs that have not been addressed since Flash Player v8; the platform SWFUpload originally targeted.
Warning: SWFUpload's .swf file suffers from a Cross Scripting vulnerability as described here: https://nealpoole.com/blog/2012/05/xss-and-csrf-via-swf-applets-swfupload-plupload/
My question here is in the title of that post. Is MultiUpload secure ? or is it safe enough to use it ?
Thank you,
Matt