Author: mackyle
Description:
STEPS
- Set $wgCheckFileExtensions to true (the default is already true).
- Set $wgStrictFileExtensions to false (the default is true).
- Make sure $wgFileExtensions is not empty (by default it's not empty)
- Attempt to upload a file with an extension not in the preferred $wgFileExtensions list (and not blacklisted) such as "foo.xyz" for example.
RESULT
The upload form does not accept any files with extensions other than those in the $wgFileExtensions array.
EXPECTED
When $wgStrictFileExtensions is set to false, all uploads that are not blacklisted should be accepted.
VERSIONS
Affects 1.16 release. The trunk version also appears to be affected.
Patches are attached for both REL1_16 and trunk.
Version: 1.17.x
Severity: normal
See Also:
https://bugzilla.wikimedia.org/show_bug.cgi?id=24022