Preview Image

Web shell upload via obfuscated file extension

Laboratorio de Portswigger sobre File Upload Vulnerabilities

25/11/2024 Portswigger Labs, File Upload Vulnerabilities

Preview Image

Web shell upload via extension blacklist bypass

Laboratorio de Portswigger sobre File Upload Vulnerabilities

25/11/2024 Portswigger Labs, File Upload Vulnerabilities

Preview Image

Web shell upload via path traversal

Laboratorio de Portswigger sobre File Upload Vulnerabilities

25/11/2024 Portswigger Labs, File Upload Vulnerabilities

Preview Image

File path traversal, validation of file extension with null byte bypass

Laboratorio de Portswigger sobre Path Traversal

24/11/2024 Portswigger Labs, Path Traversal

Preview Image

File path traversal, validation of start of path

Laboratorio de Portswigger sobre Path Traversal

24/11/2024 Portswigger Labs, Path Traversal

Preview Image

File path traversal, traversal sequences stripped with superfluous URL-decode

Laboratorio de Portswigger sobre Path Traversal

24/11/2024 Portswigger Labs, Path Traversal

Preview Image

File path traversal, traversal sequences stripped non-recursively

Laboratorio de Portswigger sobre Path Traversal

24/11/2024 Portswigger Labs, Path Traversal

Preview Image

File path traversal, traversal sequences blocked with absolute path bypass

Laboratorio de Portswigger sobre Path Traversal

24/11/2024 Portswigger Labs, Path Traversal

Preview Image

File path traversal, simple case

Laboratorio de Portswigger sobre Path Traversal

24/11/2024 Portswigger Labs, Path Traversal

Preview Image

Web shell upload via Content-Type restriction bypass

Laboratorio de Portswigger sobre File Upload Vulnerabilities

24/11/2024 Portswigger Labs, File Upload Vulnerabilities