search

danialfarid / ng-file-upload

Lightweight Angular directive to upload files with optional FileAPI shim for cross browser support
MIT License
7.87k stars 1.59k forks source link

Changing AllowScriptAccess value to SameDomain in FileAPI #2088

Open shanmugam-sekar opened 6 years ago

shanmugam-sekar commented 6 years ago

IBM Security AppScan reported allowscriptaccess = "always" as a vulnerability. Suggested to change allowscriptaccess = "SameDomain". How to do that.

flniu commented 5 years ago

We met this problem, too.