Collaborate Disseminate
I’m working on a php application that is handling file upload.
I’m trying to inject a path transversal payload in the filename such as /../../../../etc/.
The thing is that the vulnerable line of code is using the filename th… Continue reading Directory transversal in PHP with the $_FILES array?
I am using a messenger app that’s similar to WhatsApp.
This app allows me to send any type of files, like Html, Php, SWF etc. via text messages.
Is this a vulnerability?
Continue reading Is it Unrestricted file upload vulnerability?
I am trying to learn how JPG and PNG files can be used to get RCE. Below is my code for uploading files. It will check if the file content type is correct.
<?php
$test = array(‘image/jpeg’, ‘image/png’, ‘image/jpg’);
… Continue reading How exploiting RCE in jpg file actually works?
I came across a ctf challenge where php file upload was restricted but phpp and phP were not. What other formats can php be uploaded in and what is the difference?
I was trying to test for file upload vulnerability but the site seems to be secure so i wanted to try to change the path of the file upload by the file name for example: i will upload ../../../../image.jpg and by that i can c… Continue reading unrestricted file upload – can’t exploit it
I need to test a website and I found a vulnerable file upload. It is only checked whether or not the file extension is .jpg, .png or .pdf. I can bypass this by uploading a file named script.php.jpg. I know that uploaded files… Continue reading Execute an uploaded php script on a vulnerable server if I know it’s location?
For a webapp based around user uploaded pics, I want to check that I’m doing things sufficiently securely. Below is an outline of the current setup.
Of course only registered users can upload, but I know that doesn’t mean … Continue reading File upload security in webapp – overview of setup
I built a form that lets the user to upload files to a specific directory (apache2, php). I already limited file type and did some other security things. But I would anyway also like to deny the execution of those files to al… Continue reading How to deny execution of any file on a specific directory?
I’m doing some experiments on two VMs, one running Kali and the other running Ubuntu. I have a problem with the “upload” command of Meterpreter. In particular, I already open a reverse tcp session using the linux/x86/meterpre… Continue reading Meterpreter file upload – segmentation fault
I am trying to exploit a vulnerability in the filename field of a file upload. The web application does not properly validate the filename of the uploaded file and as a result there is a stored cross-site scripting vulnerabil… Continue reading Exploiting XSS in filename without using /