remote-file-upload

1 article
sort: new top best
clear filter
bug-bounty473 google371 microsoft318 facebook271 xss267 rce184 apple178 malware177 exploit165 cve122 account-takeover110 bragging-post102 phishing85 csrf85 privilege-escalation83 browser71 supply-chain69 stored-xss65 authentication-bypass64 dos64 react58 reflected-xss57 cloudflare52 reverse-engineering50 access-control48 node48 input-validation48 aws48 cross-site-scripting48 writeup47 docker46 ssrf45 smart-contract45 ethereum44 web-security43 sql-injection43 defi43 web343 oauth41 web-application41 lfi38 info-disclosure37 pentest37 race-condition37 idor35 burp-suite35 auth-bypass35 vulnerability-disclosure34 cloud34 html-injection33
0 8/10
Remote image upload leads to RCE inject malicious code
vulnerability

A remote image upload feature allowing RCE through injecting PHP payloads into GIF images with Netscape Looping Application Extensions, which survive PHP-GD image recreation due to preserved null byte blocks. The attack bypasses file extension validation by renaming uploaded images to .php and exploiting image processing that fails to sanitize injected code in GIF metadata.

remote-file-upload rce php-gd image-injection gif-exploitation jpeg-injection file-upload-bypass payload-injection php-execution netscape-looping-extension null-byte-injection
PHP-GD dlegs/php-jpeg-injector fakhrizulkifli/Defeating-PHP-GD-imagecreatefromjpeg ABOUL3LA asdqwe3 Imagemagick
medium.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details