Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-33602

Database picture field allows wrong filetypes to be selected

XMLWordPrintable

    • MOODLE_23_STABLE
    • Hide
      1. Create a database activity with a picture field. And go to 'Add entry'.
      2. Use file picker to upload a .exe file into a picture database field. Verify that you are informed by Moodle that the file cannot be uploaded.
      3. Use file picker to upload a spreadheet into a picture database field. Verify that you are informed by Moodle that the file cannot be uploaded.
      4. Use file picker to upload a text document into a picture database field. Verify that you are informed by Moodle that the file cannot be uploaded.
      5. Rename a text document so it's file extension is .jpg and use file picker to upload it into a picture database field. Verify that the file causes no problems with Moodle.
      Show
      Create a database activity with a picture field. And go to 'Add entry'. Use file picker to upload a .exe file into a picture database field. Verify that you are informed by Moodle that the file cannot be uploaded. Use file picker to upload a spreadheet into a picture database field. Verify that you are informed by Moodle that the file cannot be uploaded. Use file picker to upload a text document into a picture database field. Verify that you are informed by Moodle that the file cannot be uploaded. Rename a text document so it's file extension is .jpg and use file picker to upload it into a picture database field. Verify that the file causes no problems with Moodle.

      While upload a .exe file is not allowed within File Picker itself, renaming a .exe to .jpg will do the trick.
      Although, an exception will be raised on the next page.

            fred Frédéric Massart
            fred Frédéric Massart
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved:

                Error rendering 'clockify-timesheets-time-tracking-reports:timer-sidebar'. Please contact your Jira administrators.