Hi everybody!
I just learned that using only getimagesize() to detect whether a given file is an image file is not reliable, what might cause bugs and even security issues. Depending on the circumstances using finfo and/or checking the file extension seems to be more appropriate.
There's one place in the standard distribution of CMSimple_XH which may be improved in this regard: file upload with the filebrowser.
Using getimagesize() for image file detection
Using getimagesize() for image file detection
Christoph M. Becker – Plugins for CMSimple_XH