LPology / Simple-Ajax-Uploader

Javascript file upload plugin with progress bar support. Works in all major browsers, including IE7+, Chrome, Firefox, Safari, and Opera. No dependencies - use it with or without jQuery.
995 stars 268 forks source link

Fixing relative path security vulnerability #92

Closed nickgardos closed 9 years ago

nickgardos commented 9 years ago

A malicious user is able to save the file outside the upload directory simple by changing the X-File-Name header to something like this: ../../test.txt