KEMBAR78
Lab19 File Upload Vulnerabilities | PDF | Computer File | World Wide Web
0% found this document useful (0 votes)
122 views2 pages

Lab19 File Upload Vulnerabilities

This document discusses a lab about file upload vulnerabilities. It describes file upload vulnerabilities as allowing malicious files to be uploaded without permission, potentially executing code or accessing data. The lab objectives are to understand how to identify, exploit, and mitigate these vulnerabilities. Students are asked to answer questions about file upload risks and the exploitation process, then demonstrate uploading a web shell by modifying the file extension and using a null byte to bypass validation.

Uploaded by

truongvg2003
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
122 views2 pages

Lab19 File Upload Vulnerabilities

This document discusses a lab about file upload vulnerabilities. It describes file upload vulnerabilities as allowing malicious files to be uploaded without permission, potentially executing code or accessing data. The lab objectives are to understand how to identify, exploit, and mitigate these vulnerabilities. Students are asked to answer questions about file upload risks and the exploitation process, then demonstrate uploading a web shell by modifying the file extension and using a null byte to bypass validation.

Uploaded by

truongvg2003
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 2

Lab 19: File upload vulnerabilities

Objective:
- This lab is designed to delve into File Upload vulnerabilities, a type of security issue where
an application allows users to upload files that can be maliciously crafted to exploit the
system. Participants will interact with a simulated web application that contains
vulnerabilities in its file upload mechanism. The goal is to understand how to identify,
exploit, and mitigate file upload vulnerabilities, focusing on the risks they pose to web
applications and servers.

In this lab, students need to:


 Answer the following questions:
o What are File Upload vulnerabilities, and how do they present a risk to web applications
and servers? Discuss the potential consequences of improperly handled file uploads,
including the execution of malicious code, system compromise, and data breaches.
Explain how these vulnerabilities differ from other input-related security issues.
File Upload vulnerabilies let attackers upload malicous files to the target system server
without permission. These files could be dangerous shell that can give attackers even
more access. Consequences from unauthorized file upload could be result in data
modification and leakage, fatal financial loss.
o Describe the process of exploiting a File Upload vulnerability in a web application. What
types of files and content might an attacker use to exploit such vulnerabilities, and how
can they bypass common security checks?
Without proper filter, attackers can take advantage of uploading function of system
such as image, avatar,…Malicious files that are commonly uploaded are shell or reverse
shell, they often bypass file extension checks or change file header to trick the system
that these files are legitimate.
 Perform challenge:
o Web shell upload via obfuscated file extension
 Explain and capture all steps (full windows screen capture).

Submit a report addressing all the questions mentioned above in either PDF or Markdown format.
Additionally, include a video demonstrating the detailed process of your work to ensure the
authenticity of your lab exercise.
The report file name must be Class_YourStudentID _YourName_Lab19

In this lab we will modify the filename= parameter in the request of changing profile’s avatar. To trick
the server into thinking this is a .jpg image file, we use null byte “%00” in the filename:
malicious.php%00.jpg
The php file is just simple command to echo out rendered file in PHP:

VIDEO LINK: LAB19_FileUpload.mp4

You might also like