rfc:curl-file-upload

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
rfc:curl-file-upload [2017/09/22 13:28]
127.0.0.1 external edit
rfc:curl-file-upload [2018/07/03 19:16] (current)
stas
Line 19: Line 19:
 </​code>​ </​code>​
  
-This API is both invonvenient ​and insecure, it is impossible to send data starting with '​@'​ to the POST, and any user data that is being re-sent via cURL need to be sanitized so that the data value does not start with @. In general, in-bound signalling usually vulnerable to all sorts of injections and better not done in this way.+This API is both inconvenient ​and insecure, it is impossible to send data starting with '​@'​ to the POST, and any user data that is being re-sent via cURL need to be sanitized so that the data value does not start with @. In general, in-bound signalling usually vulnerable to all sorts of injections and better not done in this way.
  
 ===== CurlFile proposal ===== ===== CurlFile proposal =====
rfc/curl-file-upload.txt · Last modified: 2018/07/03 19:16 by stas