Backup_Repos/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings synced 2026-05-08 04:28:39 +02:00
Code Issues Projects Releases Wiki Activity

Add new reference on file upload extension checks

Browse source
This commit is contained in:
RelunSec 2026-03-29 04:09:21 -04:00 committed by GitHub
parent f695b0a527
commit 3a4bf4ce7e
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
Upload Insecure Files/README.md
View file

@ -385,3 +385,4 @@ More payloads in the folder `CVE FFmpeg HLS/`.
* [PHDays - Attacks on video converters:a year later - Emil Lerner, Pavel Cheremushkin - December 20, 2017](https://docs.google.com/presentation/d/1yqWy_aE3dQNXAhW8kxMxRqtP7qMHaIfMzUDpEqFneos/edit#slide=id.p)
* [Protection from Unrestricted File Upload Vulnerability - Narendra Shinde - October 22, 2015](https://web.archive.org/web/20200812181326/https://blog.qualys.com/securitylabs/2015/10/22/unrestricted-file-upload-vulnerability)
* [The .phpt File Structure - PHP Internals Book - October 18, 2017](https://web.archive.org/web/20260218185252/https://www.phpinternalsbook.com/tests/phpt_file_structure.html)
* [Whitespace padding in filenames bypasses - file upload extension checks on Owasp CRS - January 28, 2026](https://github.com/coreruleset/coreruleset/security/advisories/GHSA-rw5f-9w43-gv2w)