|
|
Posted by tedd on 01/22/06 18:34
>i think you guys are talking about the using the gd library, it may be
>possible so when you upload check for any php code or other data
>
>On 1/22/06, Rory Browne <rory.browne@gmail.com> wrote:
>>
>> I'd be a bit skeptical about the possibly of embedding PHP code inside
>> a GIF file. Could you outline how he performed the task?
>>
>> On 1/22/06, jonathan <news_php@arclocal.com> wrote:
>> > what is the best way to prevent malicious code from being uploaded
>> > via a .gif file? A friend showed me how php could be embedded within
>> > the .gif file. Does this problem also exist for .jpeg's?
>> >
>> > thanks,
>> >
> > > jon
I have placed data within the header of jpg files (lot's of room
there) and used that data for keeping track of images, but I don't
see how one can make embedded text executable code.
Would be very interested in how to do that.
tedd
--
--------------------------------------------------------------------------------
http://sperling.com/
Navigation:
[Reply to this message]
|