mirror of
https://github.com/carlospolop/hacktricks
synced 2024-11-21 20:23:18 +00:00
Merge pull request #616 from fssecur3/patch-1
Add special character to bypass file upload restrictions
This commit is contained in:
commit
e36ebc6dee
1 changed files with 1 additions and 0 deletions
|
@ -50,6 +50,7 @@ Other useful extensions:
|
|||
4. Try to bypass the protections **tricking the extension parser** of the server-side with techniques like **doubling** the **extension** or **adding junk** data (**null** bytes) between extensions. _You can also use the **previous extensions** to prepare a better payload._
|
||||
* _file.png.php_
|
||||
* _file.png.pHp5_
|
||||
* _file.php#.png_
|
||||
* _file.php%00.png_
|
||||
* _file.php\x00.png_
|
||||
* _file.php%0a.png_
|
||||
|
|
Loading…
Reference in a new issue