Problem

The upload container only checks for the value of the extension of an uploaded file and not on the actual format.

The website does not check for potentially dangerous files such as executable files and PDFs with cross site scripting attacks.



Solution

Blueriq is not and will not be able to check whether an upload is unsafe.  This is something a customer need to fix on a infrastructural level (firewall, anti-virus)