Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-15 01:17:36 +00:00
Code Issues Projects Releases Packages Wiki Activity

Add special character to bypass file upload restrictions

Browse source
This commit is contained in:
Francisco Spínola 2023-04-10 17:55:08 +01:00 committed by GitHub
parent 51579a95f4
commit 6a7fb5e4f4
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
pentesting-web/file-upload/README.md
View file

@ -50,6 +50,7 @@ Other useful extensions:
4. Try to bypass the protections **tricking the extension parser** of the server-side with techniques like **doubling** the **extension** or **adding junk** data (**null** bytes) between extensions. _You can also use the **previous extensions** to prepare a better payload._
* _file.png.php_
* _file.png.pHp5_
* _file.php#.png
* _file.php%00.png_
* _file.php\x00.png_
* _file.php%0a.png_