SCRIPTS CATEGORIES:

NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>

WEEK'S BEST

jQuery Mask Plugin 0.9.0

TinyMCE Templates 3.0.2

Home > Scripts > PHP Classes

PSecureImage v0.3

Add PSecureImage to your download basket


Downloads: 170	Tell us about an update

User Rating:
Rated by:

NOT RATED
0 user(s)


Developer: Website: License / Price: Platforms: Databases: Language: Last Updated: Category:	Mesut Timur \| More scripts code.google.com GPL - GNU General Public License Windows / Linux / Mac OS / BSD / Solaris N/A PHP July 2nd, 2011, 14:03 GMT C: \ PHP Classes

Read user reviews (0)

Refer to a friend

PSecureImage description

This is a PHP class for validating image files

Can be used in web upload forms for detecting XSS or LFI attacks.

In Internet Explorer, the developer can successfully launch XSS attacks with malformed image files because of it's mime-type detection algorithm.

Also the image files can contain some server-side payloads that can be used on exploiting of LFI vulnerabilities.

To prevent this, the class checks if the image is valid, and after that it cleans the EXIF section.

It uses GD for these image operations and also doesn't leave the GD banner at the EXIF.

Requirements:

· PHP

TAGS:

SUBMIT PROGRAM \| ADVERTISE \| GET HELP \| SEND US FEEDBACK \| RSS FEEDS \| UPDATE YOUR SOFTWARE \| ROMANIAN FORUM
© 2001 - 2013 Softpedia. All rights reserved. Softpedia® and the Softpedia® logo are registered trademarks of SoftNews NET SRL.	Copyright Information \| Privacy Policy \| Terms of Use

SCRIPTS CATEGORIES:

PSecureImage v0.3

PSecureImage description

This is a PHP class for validating image files

TAGS:

Share, bookmark, add