Unauthenticated Popup File Uploader Scanner
Popup Uploader includes an unauthenticated file upload vulnerability.
Short Info
Level
High
Type
Single Scan
Can be used by
Asset Owner
Estimated Time
5 sec
Scan only one
Url
Parent Category
Unauthenticated Popup File Uploader Scanner Detail
Various web applications allow users to upload files (such as pictures, images, sounds, ...). Uploaded files may pose a significant risk if not handled correctly. A remote attacker could send a multipart/form-data POST request with a specially-crafted filename or mime type and execute arbitrary code.
Try it yourself,
control security posture
control security posture