If I allow user to upload their profile picture then if user upload any shell/malware with the extension .jpg then? Will buddypress disallow these shell which has extension .jpg? Because lots of sites are being hacked by this method. They upload encrypted shell by changing its extension .php to .jpg and then done. SIte got hacked once shell was uploaded.
- You must be logged in to reply to this topic.