File upload - double extensions

20 Points  

Galerie v0.02

Auteur

g0uZ,  

Niveau  Difficulté

Validations

14393 Challengeurs 12%

Note  Notation

682 votes
Pour accéder à cette partie du site, veuillez vous authentifier

Challenges publiés dans cette rubrique 57 Challenges

Résultats Nom de l'épreuve Validations Nombre de points  Explications sur les scores Difficulté  Difficulté Auteur Note  Notation Solution
pas_valide HTML 49% 62923 5 g0uZ 3
pas_valide HTTP - Open redirect 16% 19894 10 Swissky 10
pas_valide Injection de commande 16% 19483 10 sambecks 10
pas_valide Mot de passe faible 36% 46319 10 g0uZ 3
pas_valide User-agent 25% 31674 10 g0uZ 12
pas_valide Fichier de sauvegarde 19% 23379 15 g0uZ 5
pas_valide HTTP - POST 9% 11023 15 Th1b4ud 9
pas_valide HTTP directory indexing 25% 31726 15 g0uZ 6
pas_valide HTTP Headers 17% 20974 15 Arod 10
pas_valide HTTP verb tampering 15% 19448 15 g0uZ 10
pas_valide Install files 16% 19604 15 g0uZ 2
pas_valide Redirection invalide 13% 15796 15 Arod 11
pas_valide CRLF 10% 12334 20 g0uZ 2
pas_valide File upload - double extensions 12% 14393 20 g0uZ 10
pas_valide File upload - type MIME 9% 11052 20 g0uZ 7
pas_valide HTTP cookies 14% 17686 20 g0uZ 9
pas_valide Directory traversal 12% 14935 25 g0uZ 2
pas_valide File upload - null byte 9% 10392 25 g0uZ 4
pas_valide PHP assert() 5% 5683 25 Birdy42 10
pas_valide PHP filters 8% 9196 25 g0uZ 5
pas_valide PHP register globals 6% 7635 25 g0uZ 2
pas_valide File upload - ZIP 3% 3100 30 ghozt 2
pas_valide Injection de commande - contournement de filtre 2% 2251 30 sambecks 9
pas_valide Local File Inclusion 10% 11770 30 g0uZ 1
pas_valide Local File Inclusion - Double encoding 5% 5512 30 zM 3
pas_valide PHP - Loose Comparison 2% 2338 30 ghozt 6
pas_valide PHP preg_replace() 4% 4214 30 sambecks 10
pas_valide PHP type juggling 4% 4049 30 vic 7
pas_valide Remote File Inclusion 4% 5064 30 g0uZ 12
pas_valide Server-side Template Injection 4% 4171 30 righettod 5
pas_valide SQL injection - authentification 14% 16906 30 g0uZ 10
pas_valide SQL injection - authentification - GBK 3% 3401 30 dvor4x 7
pas_valide SQL injection - string 6% 7773 30 g0uZ 7
pas_valide XSLT - Code execution 1% 1240 30 ghozt 6
pas_valide LDAP injection - authentification 4% 4720 35 g0uZ 6
pas_valide NoSQL injection - authentification 3% 3413 35 mastho 8
pas_valide Path Truncation 2% 2524 35 Geluchat 5
pas_valide PHP Sérialisation 3% 3245 35 Arod 5
pas_valide SQL injection - numérique 5% 6070 35 g0uZ 4
pas_valide SQL Injection - Routed 2% 1558 35 soka 9
pas_valide SQL Truncation 3% 2770 35 Geluchat 5
pas_valide XML External Entity 2% 2025 35 sambecks 1
pas_valide XPath injection - authentification 3% 3572 35 g0uZ 8
pas_valide Java - Spring Boot 1% 818 40 dvor4x 5
pas_valide Local File Inclusion - Wrappers 1% 1243 40 sambecks 4
pas_valide PHP - Eval 1% 769 40 chmod 11
pas_valide SQL injection - Error 3% 2803 40 sambecks 7
pas_valide SQL injection - Insert 1% 1183 40 sambecks 10
pas_valide SQL injection - lecture de fichiers 2% 2221 40 Arod 5
pas_valide XPath injection - string 2% 1862 40 g0uZ 8
pas_valide NoSQL injection - en aveugle 1% 1128 45 ghozt 11
pas_valide SQL injection - Time based 2% 2080 45 ycam 3
pas_valide Server Side Request Forgery 1% 331 50 sambecks 4
pas_valide SQL injection - en aveugle 3% 3374 50 g0uZ 10
pas_valide LDAP injection - en aveugle 2% 1363 55 g0uZ 10
pas_valide XPath injection - en aveugle 1% 880 75 g0uZ 5
pas_valide SQL injection - contournement de filtres 1% 832 80 sambecks 4