�y本 直�o a écrit : > Thank you for reply. > > >> function cleanFilenameDocument($name) >> > Yes,I can modify it. > > I wan't to know there is what kind of security risk if we don't use this > function. > For example,SQL injection attacks is disturbing.How much concern should we > pay? > Hi,
stripping ' and " of filename may be useful to limit SQL injection possiblities. I am trying to find a complete good solution. regards Julien
_______________________________________________ Glpi-user mailing list [email protected] https://mail.gna.org/listinfo/glpi-user
