GitHub topics: file-upload-vulnerability
Compcode1/ioc-22-web-shell-upload
This case demonstrates a classic but still deeply effective tactic: the use of an improperly validated file upload to implant a web shell. It wasn’t an exploit. It wasn’t a brute force attack. It was a misused feature — a vulnerable application logic path that let an attacker turn a web server into a foothold.
Language: Jupyter Notebook - Size: 24.4 KB - Last synced at: 15 days ago - Pushed at: 15 days ago - Stars: 0 - Forks: 0
Pranieth95/polyglot-generator
A simple Python tool to create polyglot files by combining a valid image (JPEG, PNG, PDF, DOCX, MP4, etc.) with PHP code.
Language: Python - Size: 6.84 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0
WSP-LAB/FUSE
A penetration testing tool for finding file upload bugs (NDSS 2020)
Language: Python - Size: 1.23 MB - Last synced at: 7 months ago - Pushed at: about 4 years ago - Stars: 249 - Forks: 44
Ziad-Sakr/Chamilo-LMS-CVE-2023-4220-Exploit
This is an Exploit for Unrestricted file upload in big file upload functionality in Chamilo-LMS for this location "/main/inc/lib/javascript/bigupload/inc/bigUpload.php" in Chamilo LMS <= v1.11.24, and Attackers can obtain remote code execution via uploading of web shell.
Language: Shell - Size: 9.77 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0
dollarboysushil/Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220
Unrestricted file upload in big file upload functionality in `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.
Size: 116 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0
galihap76/pentest-upload-file
Web Penetration Testing : File Upload Vulnerability Dengan Metasploit.
Language: PHP - Size: 5.86 KB - Last synced at: 2 months ago - Pushed at: about 1 year ago - Stars: 1 - Forks: 0
tadokun468/Task5-File_upload_vulnerabilities
+ Phân tích lổ hổng PHP Upload file Vulnerable một cách chi tiết + Làm hết các challenge về upload file trong root me
Language: PHP - Size: 7.12 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0
kljunowsky/XXElixir
This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
Language: Python - Size: 44.9 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 53 - Forks: 5
BishoySedra/Cyberus-Summer-Training
All associated materials and tasks for the training
Language: Python - Size: 15.4 MB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0
De-Technocrats/dvwaupsploit
Tool for exploiting file upload vulnerabilities in DVWA (Damn Vulnerable Web Application).
Language: Python - Size: 81.1 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0
samphoerna/Whos-who
File Upload Vulnerability using Lighweight PHP
Language: PHP - Size: 8.79 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0
WesleyWong420/Imageception
Flask Powered Vulnerable Image Generator
Language: Python - Size: 860 KB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 1 - Forks: 0
moeinfatehi/moeinfatehi
Award‑Winning Application Security Specialist, Blockchain Security Researcher
Size: 16.6 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 3 - Forks: 0
moeinfatehi/file_upload_vulnerability_scenarios
This repository is a dockerized PHP application containing some file upload vulnerability challenges (scenarios).
Language: PHP - Size: 503 KB - Last synced at: over 2 years ago - Pushed at: about 3 years ago - Stars: 19 - Forks: 3