Blog

Avoid Insecure Attachments

May 6, 2020
Carlyn Manly
1 Min Read
Usability
Click To Explore

Table of contents

When a Xurrent account is created for an organization, the security settings for this account now limit the file types that its Xurrent users are allowed to upload as attachments or inline images.

By default, only files with the following extensions are permitted:

  • csv, log, txt,
  • bmp, gif, jpeg, jpg, mp4, pdf, png, svg,
  • doc, docx, ppt, pptx, xls, xlsx

 

File extensions whitelisted by default

The Extension whitelist field is automatically populated with these file extensions when a new Xurrent account is created.  That saves account owners the trouble of having to think of a sensible whitelist for their organization.

Note that the extension whitelist is maintained in the ‘Security‘ section of the Settings console.  Only the owner of a Xurrent account has access to this section.

Related Articles

See More
right-arrow Created with Sketch.
See More
right-arrow Created with Sketch.
News

Surviving (and Thriving) at AWS re:Invent 2025

Planning to attend AWS re:Invent 2025? Here's everything about schedules, tech talks, and discounts . Read our blog to learn more!

7 Mins
October 27, 2025
News
News

Xurrent named a Market Leader in Research In Action’s Vendor Selection Matrix™ for IT & Enterprise Service Management Solutions

Xurrent earns #1 rankings in customer satisfaction, price vs value, and recommendation index in Research In Action's global ITSM/ESM Vendor Selection Matrix report.

7 Min Read
June 13, 2025
Service Management
News
Press Release
Performance
Enterprise
Security And Privacy

Xurrent’s C5 attestation strengthens data protection

Learn why C5 attestation matters for ITSM customers and how Xurrent's compliance enhances data protection, security controls, and regulatory alignment for organizations operating under EU data protection laws.

3 Min Read
March 24, 2025
Incident Management
Security And Privacy
Risk Management
Cloud Computing
Enterprise