file-upload – Page 12 – WindowsTechs.com

Should you really check user uploaded files for malware/shells?

Posted on July 23, 2019 by Tim Mishutin

It’s clear that the system has to filter user input. I always thought that the standard is also to check user uploaded files for malware/shells.

I’m curious if above is really needed. There is a PHP (Laravel) application tha… Continue reading Should you really check user uploaded files for malware/shells?→

Is it possible to exfiltrate a router config file to server using csrf ajax?

Posted on July 18, 2019 by MoooonX

the curl commend used to download the file

curl “http://192.168.1.1/html/management/downloadconfigfile.conf?RequestFile=/html/management/cfgfile.asp” -H “Cookie: SessionID_R3=dsadwdwqdasdwasdawd” –data “csrf_token=saddasdwa… Continue reading Is it possible to exfiltrate a router config file to server using csrf ajax?→

Why does the file "shell.php.jpg" can execute as a php file but "shell.jpg" cannot?

Posted on July 17, 2019 by Yuval

I am learning about file upload vulnerabilities using DVWA.

After cranking the website’s security level to High,
the website checks both the post request’s content type & file extension, so in order to bypass it I change… Continue reading Why does the file "shell.php.jpg" can execute as a php file but "shell.jpg" cannot?→

Codeigniter Site hacked

Posted on July 9, 2019 by Manoj Bist

I developed an application using CodeIgniter and used some libraries from the composer.
So my Vendor directory was in the root directory of this application.
And attacker attacked phpunit/scr/php/util/ directory and injected… Continue reading Codeigniter Site hacked→

Should i consider too high file upload as abuse of services?

Posted on July 6, 2019 by HadstfuDsod8520 test

I have one website xxx.xx, no rules are set for uploading files(except the ones that are needed to filter out inapplicable files)

It’s a pretty simple website, not really advanced on the first sight, i allow visitors to uplo… Continue reading Should i consider too high file upload as abuse of services?→

How to securly upload images into monogdb

Posted on July 6, 2019 by Mat.C

I’m using mongodb, Nodejs and express. I’m creating a webbApp and i want to give to the users the featur to upload their profile image, I saw Here that there are some risks by letting the user upload files, What precaution sh… Continue reading How to securly upload images into monogdb→

File upload security with PHP – Header to text/plain

Posted on June 16, 2019 by Rors

I am using PHP to create a small script that uploads images to a server.

While going through the PHP documentation, I found a contribution from user CertaiN that gives a very clear example of how this script should look like… Continue reading File upload security with PHP – Header to text/plain→

What is the point of hashes when downloading over the same channel?

Posted on June 9, 2019 by Bleeding Obvious

What is the point of providing shaXXX hashes for downloads of software over say TLS when any attacker that could change the download could have easily changed the hash? Isn’t there enough information in the download to know t… Continue reading What is the point of hashes when downloading over the same channel?→

WordPress WP Live Chat Support Plugin Fixes XSS Flaw

Posted on May 17, 2019 by Lindsey O'Donnell

A cross-site scripting flaw in a popular WordPress plugin enables an unauthenticated attacker to insert JavaScript payloads into impacted websites. Continue reading WordPress WP Live Chat Support Plugin Fixes XSS Flaw→

Is this CORS exploitable?

Posted on May 13, 2019 by stack ups

So i was able to upload a html file on a server i’m allowed to test. The file is uploaded on a subdomain of the main server. Knowing that they allow CORS for anything.domain.com, is it possible to exploit this CORS by uploading a POC html … Continue reading Is this CORS exploitable?→