In case of offline usage there is the possibility for SQL injections
Attach a file by drag & drop or click to upload
