Does AJAX Uploader validate against MIME types , or does it ONLY look at file extensions?
In other words, if I want to limit me control to only upload GIFs, and someone takes an executable virus EXE file, renames it to harmless.GIF, can they upload that file to the site?
Or, is there a way to have AJAX Uploader actually inspect the ContentType of the file, see it's MIME type as application\octet (or whatever illegal type you want), and reject the file upload, and return an error message?
Thanks