[issue26737] csv.DictReader throws generic error when fieldnames is accessed for non-text file
Berker Peksag
report at bugs.python.org
Tue Apr 12 04:57:14 EDT 2016
Berker Peksag added the comment:
> The scenario is a web application allowing people to upload csv files, but they can upload any files they like.
This looks like a potential security flaw in the application. The application should reject any non-CSV files from being uploaded (instead of relying on the CSV module).
Thanks for the report.
----------
nosy: +berker.peksag
resolution: -> not a bug
stage: -> resolved
status: open -> closed
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue26737>
_______________________________________
More information about the Python-bugs-list
mailing list