File upload TODO - Githubissues

maccesch / cmsplugin-contact

Extendable contact plugin for django-cms with spam protection and i18n

BSD 2-Clause "Simplified" License

71 stars 62 forks source link

File upload TODO #32

Closed maccesch closed 6 years ago

maccesch commented 12 years ago

Add file upload field to default template? (commented out?) Security Concerns?

mitar commented 12 years ago

I would have a settings switch for this. Because just not having it in the template while form still allows it, would allow somebody to forge the upload and force the attachment.

maccesch commented 12 years ago

You're absolutely right