v16 Files and resources verification requirementsΒΆ
- 16.1 Safe from unsafe redirects
- 16.2 Safe from path traversal
- 16.3 Anti-virus scanning
- 16.4 Safe from local file inclusion attacks
- 16.5 Safe from remote file inclusion attacks
- 16.6 Resource sharing
- 16.7 Untrusted files are stored outside the webroot
- 16.8 Deny access to resources or systems outside web or app server
- 16.9 Does not execute uploaded data from untrusted sources