但是,虽然在用户端执行档案名称检查很好用,却不能保证使用者无法上载不安全的档案类型,例如可执行档。
However, although performing a client-side check of the file name can be useful, it does not guarantee that users cannot upload an unsafe file type, such as an executable file.
在允许使用者检视索引标签前,根据提供的资讯,您可能要检查使用者用以登入的使用者名称或其他形式的认证。
Depending upon the information presented, you may want to check the user name the user has logged in with or some other form of credentials before allowing the user to view the TAB.
应用推荐