Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
alestro2016-09-29 20:53:05
Laravel
alestro, 2016-09-29 20:53:05

How to avoid security issues when uploading files by url?

At the moment, the functionality of loading images by url is required, before saving it to the server, I check it through this construction: How correct is this, and how can I avoid holes altogether? @exif_imagetype(Request::input('url')) === false

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
T
thorii, 2016-09-29
@thorii

  • Check response header
  • mime content type
Another getimagesize to use when checking

Report
T
Tesla, 2016-09-30
@Tesla

First, never use @
Second, there is validation#rule-image

Similar questions
O
Ostap2020-03-29 10:05:23
How to implement this in React or JS? 3Reply
D
D3V1L2019-12-01 01:45:58
Laravel IPN notifications not coming? 1Reply
A
Arthur2015-07-26 00:26:59
What is wrong in Laravel request code? 2Reply
S
Sergey Nikolaev2015-07-26 21:36:41
How to connect cookies and CORS in Laravel and Angular? 2Reply
V
Vyacheslav Shevchenko2019-12-02 17:23:08
Is there a generic entity constructor for Laravel? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question