I'm trying to upload a few files for a client, which are critical to the success of their website. The files are .xml and .xsd files. Every time I try to upload them I get the message "Possible IE XSS Attack found".
I'm using Joomla 2.5.1, Phoca Download 2.1.5.
I saw somewhere that this is controlled by a setting in Joomla itself; I've added those file types to the allowable files in the Media Manager, and have also added them into the media manager options as Legal Extensions for the SuperAdmin. I have also aded the mime types into the options for Phoca Download (both in the download and upload sections).
I don't believe this cannot be done - it was working fine when I was using DocMan. Unfortunately, they went to a paid model, and I want to use and support Phoca in any event.
What do I need to set to make this work???
NEED to upload xml and xsd files
-
Jan
- Phoca Hero
- Posts: 48595
- Joined: 10 Nov 2007, 18:23
- Location: Czech Republic
- Contact:
Re: NEED to upload xml and xsd files
Hi, then in such case you will need to customize Phoca Download and skip the checking for XSS attack files:
D:\www\J251\administrator\components\com_phocadownload\helpers\fileupload.php
canUpload method.
Jan
D:\www\J251\administrator\components\com_phocadownload\helpers\fileupload.php
canUpload method.
Jan
If you find Phoca extensions useful, please support the project