• Home
  • Category: File Upload

Category: File Upload

SecOps December 7, 2021 File Upload,  Path Traversal

TL;DR File upload allows you to upload a ZIP file and extract its contents online. Upload a ZIP file with a malicious symlink and extract arbitrary files from the server. Pr0fit 🙂 Recently our team discovered a vulnerability in one of the client’s web applications which allowed us to read local files from the application’s […]