File upload - double extensions

20 Points  

Galerie v0.02

Auteur

g0uZ,  

Niveau  Difficulté

Validations

14421 Challengeurs 12%

Note  Notation

683 votes
Pour accéder à cette partie du site, veuillez vous authentifier

Challenges publiés dans cette rubrique 57 Challenges

Résultats Nom de l'épreuve Validations Nombre de points  Explications sur les scores Difficulté  Difficulté Auteur Note  Notation Solution
pas_valide HTML 49% 63039 5 g0uZ 4
pas_valide HTTP - Open redirect 16% 19962 10 Swissky 10
pas_valide Injection de commande 16% 19542 10 sambecks 10
pas_valide Mot de passe faible 36% 46395 10 g0uZ 3
pas_valide User-agent 25% 31734 10 g0uZ 12
pas_valide Fichier de sauvegarde 18% 23419 15 g0uZ 5
pas_valide HTTP - POST 9% 11091 15 Th1b4ud 9
pas_valide HTTP directory indexing 25% 31784 15 g0uZ 6
pas_valide HTTP Headers 17% 21014 15 Arod 10
pas_valide HTTP verb tampering 15% 19487 15 g0uZ 10
pas_valide Install files 16% 19638 15 g0uZ 2
pas_valide Redirection invalide 13% 15831 15 Arod 11
pas_valide CRLF 10% 12356 20 g0uZ 2
pas_valide File upload - double extensions 12% 14420 20 g0uZ 10
pas_valide File upload - type MIME 9% 11074 20 g0uZ 7
pas_valide HTTP cookies 14% 17713 20 g0uZ 9
pas_valide Directory traversal 12% 14957 25 g0uZ 2
pas_valide File upload - null byte 9% 10414 25 g0uZ 4
pas_valide PHP assert() 5% 5697 25 Birdy42 10
pas_valide PHP filters 8% 9208 25 g0uZ 5
pas_valide PHP register globals 6% 7645 25 g0uZ 2
pas_valide File upload - ZIP 3% 3110 30 ghozt 2
pas_valide Injection de commande - contournement de filtre 2% 2254 30 sambecks 9
pas_valide Local File Inclusion 10% 11788 30 g0uZ 1
pas_valide Local File Inclusion - Double encoding 5% 5518 30 zM 3
pas_valide PHP - Loose Comparison 2% 2343 30 ghozt 6
pas_valide PHP preg_replace() 4% 4218 30 sambecks 10
pas_valide PHP type juggling 4% 4059 30 vic 7
pas_valide Remote File Inclusion 4% 5071 30 g0uZ 12
pas_valide Server-side Template Injection 4% 4176 30 righettod 5
pas_valide SQL injection - authentification 14% 16920 30 g0uZ 10
pas_valide SQL injection - authentification - GBK 3% 3409 30 dvor4x 7
pas_valide SQL injection - string 6% 7781 30 g0uZ 7
pas_valide XSLT - Code execution 1% 1243 30 ghozt 6
pas_valide LDAP injection - authentification 4% 4725 35 g0uZ 6
pas_valide NoSQL injection - authentification 3% 3418 35 mastho 8
pas_valide Path Truncation 2% 2526 35 Geluchat 5
pas_valide PHP Sérialisation 3% 3248 35 Arod 5
pas_valide SQL injection - numérique 5% 6079 35 g0uZ 4
pas_valide SQL Injection - Routed 2% 1560 35 soka 9
pas_valide SQL Truncation 3% 2774 35 Geluchat 5
pas_valide XML External Entity 2% 2029 35 sambecks 1
pas_valide XPath injection - authentification 3% 3579 35 g0uZ 8
pas_valide Java - Spring Boot 1% 819 40 dvor4x 5
pas_valide Local File Inclusion - Wrappers 1% 1244 40 sambecks 4
pas_valide PHP - Eval 1% 772 40 chmod 11
pas_valide SQL injection - Error 3% 2809 40 sambecks 7
pas_valide SQL injection - Insert 1% 1186 40 sambecks 10
pas_valide SQL injection - lecture de fichiers 2% 2225 40 Arod 5
pas_valide XPath injection - string 2% 1862 40 g0uZ 8
pas_valide NoSQL injection - en aveugle 1% 1132 45 ghozt 11
pas_valide SQL injection - Time based 2% 2084 45 ycam 3
pas_valide Server Side Request Forgery 1% 331 50 sambecks 4
pas_valide SQL injection - en aveugle 3% 3374 50 g0uZ 10
pas_valide LDAP injection - en aveugle 2% 1364 55 g0uZ 10
pas_valide XPath injection - en aveugle 1% 880 75 g0uZ 5
pas_valide SQL injection - contournement de filtres 1% 836 80 sambecks 4