Unfortunately, our security folks regard it as a vulnerability and won't let me use the AJAXUploader unless the problem is addressed - is there a way for me to examine that script on the server side?  That would allow me to scan for objectionable characters and throw an exception, or at least strip them out.

 

thanks,

 

Pete