Website form - file upload security | Odoo

Apps
Finance

Accounting

Invoicing

Expenses

Spreadsheet (BI)

Documents

Sign
Sales

CRM

Sales

POS Shop

POS Restaurant

Subscriptions

Rental
Websites

Website Builder

eCommerce

Blog

Forum

Live Chat

eLearning
Supply Chain

Inventory

Manufacturing

PLM

Purchase

Maintenance

Quality
Human Resources

Employees

Recruitment

Time Off

Appraisals

Referrals

Fleet
Marketing

Social Marketing

Email Marketing

SMS Marketing

Events

Marketing Automation

Surveys
Services

Project

Timesheets

Field Service

Helpdesk

Planning

Appointments
Productivity

Discuss

Approvals

IoT

VoIP

Knowledge

WhatsApp
Third party apps Odoo Studio Odoo Cloud Platform
Industries
Retail

Agriculture Store

Bakery

Book Store

Clothing Store

Furniture Store

Grocery Store

Hardware Store

Toy Store

Services

Bike Leasing

Billboard Rental

Hair Salon

Handyman

Law firm

Odoo Partner

Property Owner Association

Real Estate

Talent Acquisition
Construction

Architecture Firm

Construction

Gardening

Solar Energy

Supply Chain

Beverage Distributor

Corporate Gifts

Custom Furniture Production

Micro Brewery

Health & Fitness

Eyewear Store

Fitness Center

Sports Club

Wellness Practitioners

Hospitality

Bar and Pub

Fast Food

Fine Dining Restaurant
...and many more!
Browse all Industries
Community
Learn

Tutorials

Documentation

Certifications

Training

Podcast

Empower Education

Education Program

Scale Up! Business Game

Visit Odoo
Get the Software

Download

Compare Editions

Releases
Collaborate

Github

Forum

Events

Translations

Become a Partner

Register your Accounting Firm
Get Services

Find a Partner

Find an Accountant

Meet an advisor

Customer References

Implementation Services

Development Services

Support

Upgrades
Github Youtube Twitter Linkedin Instagram Facebook Spotify

+1 (650) 691-3277
Get a demo
Pricing
Help

Odoo is the world's easiest all-in-one management software.
It includes hundreds of business apps:

CRM
e-Commerce
Accounting
Inventory
PoS
Project
MRP

All apps

All Posts People Badges

Tags (View all)

odoo accounting v14 v15 pos

About this forum

Website form - file upload security

website

880 Views

Yedidel Elhayany

Hi

I have created a new form (using xml view) for Odoo Website, and added a file field there.

I was sure that Odoo has built-in malicious file check mechanism, but it looks like I can upload everything there, including .js and .php file with bad code.

What is the right mechanism to secure such forms?

Enjoying the discussion? Don't just read, join in!

Create an account today to enjoy exclusive features and engage with our awesome community!

Sign up

Related Posts		Replies	Views	Activity
Product Collection website		2 Apr 25	59
in my odoo web development, shape option is not present in image cusomization section, I dont know why. By the way i am using free plan. website		0 Mar 25	295
More than one Website Solved website		1 Feb 25	484
how to change the color of the text when the mouse passes by after inserting a link? website		1 Feb 25	835
How do I remove the numbers from the slugs in my blog and blogpost? website		2 Feb 25	506