File upload - Double extensions

20 Punkte  0x0

Galerie v0.02

Autor

g0uZ,  

Stufe  Schwierigkeitsgrad

Validierung

33153 Herausforderer 11%

Bewertung  Bewertung

1
2
3
4
5
1317 votes

Bitte loggen Sie sich ein um auf diese Seite zugreifen zu können

solutions 1 Musterlösung

Musterlösungen anschauen Eine Musterlösung vorschlagen
Sie müssen diese Übung lösen bevor Sie eine Musterlösung einreichen können

Ergebnisse der Übungen Ergebnisse der Übungen

Nickname Übungen Sprache date
Skybroww Web - Server  File upload - Double extensions en 12. Juni 2024 zu  10:59
Nefaaa Web - Serveur  File upload - Double extensions fr 12. Juni 2024 zu  10:43
7Akashi Web - Serveur  File upload - Double extensions fr 12. Juni 2024 zu  02:19
Bruneck Web - Server  File upload - Double extensions en 11. Juni 2024 zu  19:07
H3lli0t Web - Serveur  File upload - Double extensions fr 11. Juni 2024 zu  18:12
ppelleti Web - Serveur  File upload - Double extensions fr 11. Juni 2024 zu  15:55
Edia_r Web - Serveur  File upload - Double extensions fr 11. Juni 2024 zu  15:35
Khiem Trinh Web - Server  File upload - Double extensions en 11. Juni 2024 zu  14:35
mathys Web - Serveur  File upload - Double extensions fr 11. Juni 2024 zu  12:55
NounoursDesTavernes Web - Serveur  File upload - Double extensions fr 11. Juni 2024 zu  11:29

challenges 92 Premium Übungen

Ergebnis Name Validierung Anzahl der Punkte  Erklärung der Punktevergabe Schwierigkeitsgrad   Schwierigkeitsgrad Autor Bewertung  Bewertung Musterlösung date
pas_valide SQL injection - Filter bypass 1% 2552 80 sambecks 0 21. Juli 2014
pas_valide XPath injection - Blind 1% 2216 75 g0uZ 0 27. Dezember 2012
pas_valide Python - Blind SSTI Filters Bypass 1% 570 75 Podalirius 0 7. September 2021
pas_valide SQL Injection Second Order 1% 133 55 k4ndar3c 0 29. November 2023
pas_valide PHP - Unserialize Pop Chain 1% 581 55 Worty 0 22. Oktober 2021
pas_valide PHP - Unserialize overflow 1% 721 55 mayfly 0 4. April 2020
pas_valide LDAP injection - Blind 1% 3299 55 g0uZ 1 8. Juni 2013
pas_valide Java - Custom gadget deserialization 1% 49 50 Elweth 0 28. Dezember 2023
pas_valide NoSQL injection - Authentication 3% 7387 35 mastho 0 31. Mai 2015
pas_valide XML External Entity 2% 5278 35 sambecks 0 20. Oktober 2014
pas_valide SQL Truncation 2% 6322 35 Geluchat 0 1. Mai 2015
pas_valide SQL Injection - Routed 2% 4999 35 soka 0 24. Dezember 2016
pas_valide SQL injection - Numeric 5% 14151 35 g0uZ 0 24. Dezember 2012
pas_valide PHP - Serialization 2% 6496 35 Arod 0 3. Februar 2014
pas_valide PHP - Path Truncation 2% 5225 35 Geluchat 0 25. März 2015
pas_valide XSLT - Code execution 2% 3534 30 ghozt 1 16. Juli 2017
pas_valide Node - Serialize 1% 1151 35 Mhd_Root 0 24. Februar 2021
pas_valide LDAP injection - Authentication 3% 9876 35 g0uZ 1 26. Mai 2013
pas_valide JWT - Unsecure Key Handling 1% 619 35 Nishacid , Mika 0 23. Februar 2023
pas_valide Elixir - EEx 1% 172 35 lolo42 0 29. November 2023
pas_valide Yaml - Deserialization 1% 1252 35 Nishacid 0 20. April 2021
pas_valide SQL injection - String 7% 20574 30 g0uZ 2 24. Dezember 2012
pas_valide SQL injection - Authentication - GBK 3% 9122 30 dvor4x 0 2. Dezember 2015
pas_valide SQL injection - Authentication 14% 43414 30 g0uZ 2 27. Februar 2011
pas_valide XPath injection - Authentication 2% 6322 35 g0uZ 0 27. Dezember 2012
pas_valide Local File Inclusion - Wrappers 2% 3461 40 sambecks 0 2. März 2016
pas_valide API - Broken Access 2 1% 74 40 Nishacid , Mika 0 18. Januar 2024
pas_valide XPath injection - String 2% 3741 40 g0uZ 1 26. Mai 2013
pas_valide SQL injection - Blind 3% 7211 50 g0uZ 1 27. Februar 2011
pas_valide Server Side Request Forgery 1% 1736 50 sambecks 0 22. Juni 2018
pas_valide NodeJS - vm escape 1% 681 50 Podalirius 0 15. April 2021
pas_valide SQL injection - Time based 2% 5381 45 ycam 0 11. September 2015
pas_valide NoSQL injection - Blind 1% 2816 45 ghozt 0 26. November 2016
pas_valide NodeJS - Prototype Pollution Bypass 1% 453 45 Worty 0 22. Oktober 2021
pas_valide File upload - Polyglot 1% 386 45 Cyxo 0 8. Juli 2022
pas_valide SQL injection - File reading 2% 5774 40 Arod 0 19. Oktober 2014
pas_valide GraphQL - Backend injection 1% 340 40 apges01 0 19. Januar 2023
pas_valide SQL injection - Insert 1% 3030 40 sambecks 0 23. Februar 2015
pas_valide SQL injection - Error 3% 7241 40 sambecks 0 4. März 2015
pas_valide PHP - Eval - Advanced filters bypass 1% 520 40 Podalirius 0 8. Juli 2022
pas_valide PHP - Eval 2% 3411 40 chmod 0 8. November 2018
pas_valide PHP - type juggling 3% 8519 30 vic 0 10. März 2016
pas_valide Java - Spring Boot 1% 2236 40 dvor4x 0 24. Dezember 2016
pas_valide GraphQL - Mutation 1% 1470 40 CanardMandarin 0 20. Oktober 2020
pas_valide Remote File Inclusion 4% 11317 30 g0uZ 2 25. November 2015
pas_valide PHP - preg_replace() 3% 8691 30 sambecks 0 2. März 2016
pas_valide XSS - Server Side 1% 1871 20 Elf 0 23. Juni 2023
pas_valide PHP - Filters 6% 18792 25 g0uZ 1 27. Februar 2011
pas_valide API - Mass Assignment 1% 1373 20 Nishacid , Mika 0 18. Januar 2024
pas_valide Flask - Unsecure session 1% 1555 20 Sanlokii 0 29. November 2023
pas_valide GraphQL - Introspection 1% 2950 20 apges01 0 19. Januar 2023
pas_valide JWT - Introduction 5% 15779 20 Kn0wledge 0 21. August 2019
pas_valide PHP - Loose Comparison 3% 6932 30 ghozt 0 10. Januar 2018
pas_valide Directory traversal 11% 33524 25 g0uZ 1 31. Juli 2011
pas_valide JWT - Revoked token 2% 5362 25 ArnC 0 20. März 2020
pas_valide JWT - Weak secret 4% 10888 25 Jrmbt 0 21. August 2019
pas_valide JWT - Unsecure File Signature 1% 1613 25 Nishacid , Mika 0 23. Februar 2023
pas_valide PHP - assert() 5% 14654 25 Birdy42 1 26. November 2016
pas_valide PHP - Apache configuration 1% 1954 25 erk3 , nemoz 0 8. Juli 2022
pas_valide File upload - Null byte 7% 22629 25 g0uZ 1 26. Dezember 2012
pas_valide PHP - register globals 5% 15126 25 g0uZ 1 8. Oktober 2011
pas_valide Java - Server-side Template Injection 4% 10107 30 righettod 0 29. November 2015
pas_valide Node - Eval 1% 2634 30 Mhd_Root 0 24. Februar 2021
pas_valide PHP - Remote Xdebug 1% 1381 25 mayfly 0 18. März 2020
pas_valide Local File Inclusion 8% 24421 30 g0uZ 0 2. Oktober 2011
pas_valide JWT - Header Injection 1% 909 30 Nishacid , Mika 0 23. Februar 2023
pas_valide JWT - Public key 2% 3512 30 Jrmbt 0 21. August 2019
pas_valide Local File Inclusion - Double encoding 4% 12248 30 zM_ 1 13. Juni 2016
pas_valide Python - Server-side Template Injection Introduction 2% 3904 25 Podalirius 0 7. September 2021
pas_valide Command injection - Filter bypass 3% 7234 30 sambecks 1 20. September 2017
pas_valide GraphQL - Injection 1% 575 30 apges01 0 19. Januar 2023
pas_valide Flask - Development server 1% 555 30 Sanlokii 0 29. November 2023
pas_valide File upload - ZIP 3% 8997 30 ghozt 0 3. August 2017
pas_valide HTTP - Directory indexing 23% 73279 15 g0uZ 1 7. Oktober 2006
pas_valide HTTP - Headers 16% 51650 15 Arod 2 11. Januar 2015
pas_valide HTTP - POST 14% 46277 15 Th1b4ud 1 14. August 2018
pas_valide HTTP - Improper redirect 13% 40161 15 Arod 2 26. November 2014
pas_valide HTTP - Verb tampering 14% 43803 15 g0uZ 2 3. Februar 2011
pas_valide CRLF 10% 30222 20 g0uZ 1 31. Juli 2011
pas_valide Install files 13% 41476 15 g0uZ 1 7. Oktober 2006
pas_valide API - Broken Access 1% 1964 15 Nishacid , Mika 0 18. Januar 2024
pas_valide File upload - Double extensions 11% 33153 20 g0uZ 1 24. Dezember 2012
pas_valide File upload - MIME type 8% 26462 20 g0uZ 2 26. Dezember 2012
pas_valide HTTP - Cookies 14% 43235 20 g0uZ 1 7. Oktober 2006
pas_valide Insecure Code Management 4% 12703 20 Swissky 1 29. September 2019
pas_valide Backup file 16% 51786 15 g0uZ 1 27. Februar 2011
pas_valide HTTP - User-agent 24% 78740 10 g0uZ 5 3. Oktober 2006
pas_valide HTTP - Open redirect 19% 62478 10 Swissky 3 2. August 2017
pas_valide HTTP - IP restriction bypass 8% 24617 10 Cyrhades 0 23. März 2021
pas_valide Weak password 32% 103893 10 g0uZ 1 3. Oktober 2006
pas_valide PHP - Command injection 19% 61943 10 sambecks 4 20. September 2017
pas_valide HTML - Source code 49% 159551 5 g0uZ 2 3. Oktober 2006