Fox2Now St. Louis

If you use Firefox, you should update now to avoid file stealing exploit

This is an archived article and the information in the article may be outdated. Please look at the time stamp on the story to see when it was last updated. Firefox users should update to 39.0.3 as ...
CSOonline

Attackers exploit zero-day RCE flaw in Cleo managed file transfer

The exploit takes advantage of a known file upload vulnerability that was not efficiently patched and can still be exploited in up-to-date versions of Cleo LexiCom, VLTrader and Harmony products.
Computer Weekly

File upload security best practices: Block a malicious file upload

We need to allow our customers to upload files for one of our Web applications. What are the security implications of allowing users to upload files on our website? The ability to upload files on a ...