about summary refs log tree commit diff
path: root/qc_app/templates/unhandled_exception.html
diff options
context:
space:
mode:
authorFrederick Muriuki Muriithi2024-02-15 04:55:42 +0300
committerFrederick Muriuki Muriithi2024-02-15 05:15:08 +0300
commit164d53f5f53a469730a66a0be0af7016c53f2aa5 (patch)
tree8c23903ed3a2d373a5078b07d4be55b9c996de67 /qc_app/templates/unhandled_exception.html
parent6b0ddee7a57a6d2e02024ebcd22dbe915d09e375 (diff)
downloadgn-uploader-164d53f5f53a469730a66a0be0af7016c53f2aa5.tar.gz
Provide only the file name, not full path.
There are 2 reasons to provide only the filename and not the full
path:
* Security: We do not want to inadvertently expose the paths to the
  outside world, or allow users to enter file system paths for this
  system.
* The code does not assume a complete path, rather, it builds the path
  to the upload directory using the filename received from the user.
Diffstat (limited to 'qc_app/templates/unhandled_exception.html')
0 files changed, 0 insertions, 0 deletions