Skip to content

Cyber Security
Education
- Scholarship
- Internships

Cyber Security
Education
- Scholarship
- Internships

Web shell upload via obfuscated file extension: Web SecurityWeb shell upload via obfuscated file extension

Web shell upload via obfuscated file

Web shell upload via obfuscated file extension: Web Security

In this article, we will cover Web shell upload via obfuscated file extension. This is the 5th part of our file upload vulnerabilities series. Lab description In this lab, we have a vulnerability in the … Read more

Search for:

Advertisement

Our Categories

Blogs
Cyber Security
Education
Internships
KaliLinux
Scholarship
Web Security

Our Recent Posts

User ID controlled by request parameter with password disclosure
What is Web Security? Protecting Your Online Presence in 2023
Unprotected admin functionality
User role can be modified in user profile
Unprotected admin functionality with unpredictable URL
User role controlled by request parameter
User ID controlled by request parameter
User ID controlled by request parameter with unpredictable user IDs
User ID controlled by request parameter with data leakage in redirect
Weak Isolation On Dual-Use Endpoint
Insufficient Workflow Validation
Authentication Bypass Via Flawed State Machine
Inconsistent Handling of Exceptional Input
Low-Level Logic Flaw
High-Level Logic Vulnerability
Flawed Enforcement of Business Rules
Excessive trust in client-side controls
Business Logic Vulnerabilities Basic to Advanced
Exploiting XXE To Retrieve Data By Repurposing A Local DTD
Exploiting XXE Via Image File Upload

Advertisement

© 2019-23 ALL RIGHTS RESERVED. NOVA EXPERIENCE

Cyber Security
Education
- Scholarship
- Internships