Content Snare has many areas that allow end or mid users to upload files. Each of these areas are configured to accept a whitelist of allowable file types.
This article describes the allowable file types for each upload area and describes why the whitelist restrictions are in place.
WYSIWYG Editor
Images
Images are uploaded using the toolbar “insert picture” icon and are displayed inline within the editor. Therefore, the acceptable file types are limited to images that can be natively displayed by current web browsers.
File types are limited to:
- JPEG
- JPG
- PNG
- GIF
- TIFF
- WEBP
Attachments
Attachments are uploaded using the “add attachment” icon and are displayed as downloadable attachments.
As attachments are downloaded, the allowable file types are extensive. However, we do not allow all file types as we do not bad actors uploading malware for unsuspecting end users.
Therefore, attachments are limited to:
- JPEG
- JPG
- PNG
- GIF
- TIFF
- WEBP
- SVG
- AI
- PS
- EPS
- PSD
- DOC
- DOCX
- XLS
- XLSX
- PP
- PPX
- RTF
- TXT
- CSV
- VSD
Requests
Image Selection
Images uploaded to the image selection field within the builder must be natively displayable by all modern browsers.
File types are therefore limited to:
- JPEG
- JPG
- PNG
- GIF
- TIFF
- WEBP
Image Upload
End users can upload files to image fields within the request viewer. Images are restricted to ensure image fields accept only image file types.
File types are restricted to:
- JPEG
- JPG
- PNG
- GIF
- TIFF
- WEBP
- SVG
- PDF,
- AI
- PS
- EPS
- PSD
File Upload
End users can upload files to file fields within the request viewer.
File uploads are unrestricted and accept any file type. The mid user must be diligent in ensuring that they appropriately access the threat uploaded file and scan for viruses etc as appropriate.