i need to know about addAtachment in custom mail form using Jmail
is there some Joomla file check inside this function? Allowed types?
how to sanytice files for example doc, pdf, xls, images only
what problems with security are to be expected, what is already avoided by default:
Any recommendation for using this and stay secure,
Or should better be used for example a plugin like DPattachment, or a Form-component.
JMail has no checks for what you add as attachment to the mail that you
are sending. That is not the task of the class. You have to do those
checks in your own code. It is normally expected that the attachments
are from trusted sources (or sanitised before).
Hannes
Am 21.10.2016 um 12:18 schrieb curious:
> i need to know about addAtachment in custom mail form using Jmail
>
>
> is there some Joomla file check inside this function? Allowed types?
> how to sanytice files for example doc, pdf, xls, images only
>
>
> what problems with security are to be expected, what is already avoided
> by default:
>
>
> Any recommendation for using this and stay secure,
>
>
> Or should better be used for example a plugin like DPattachment, or a
> Form-component.
>
> --
> You received this message because you are subscribed to the Google
> Groups "Joomla! General Development" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to joomla-dev-general+unsub...@googlegroups.com
> <mailto:joomla-dev-general+unsub...@googlegroups.com>.