|
Bug:
It appears as though the use of a ”/” character in a file upload “Name” field is not translated to the proper HTML character code prior to link generation. This causes an invalid link to be created upon upload of the file as a ”/” character is used in the link instead of the ”/” character code.
Suggested Solution:
All input fields should be escaped and translated to proper HTML character codes prior to storage in the database and generation of associated links.
|
0 post(s),
1 voice
