Skip to content
/ Insecure-File-Extraction Public

This code is the demonstration of using path traversal to exploit a poorly coded upload file fuction for malicious code injection on to a web server.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

faisalkhan91/Insecure-File-Extraction

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
Malicious_test_file
Malicious_test_file
 
 
Other
Other
 
 
Screenshots
Screenshots
 
 
bad_python_extract
bad_python_extract
 
 
Insecure File Extraction.pptx
Insecure File Extraction.pptx
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
Report.docx
Report.docx
 
 

Repository files navigation

Insecure-File-Extraction

This code is the demonstration of using path traversal to exploit a poorly coded upload file fuction for malicious code injection on to a web server.

There is a insecure version of the code that demonstrates the vulnerability and a secure version that demonstrates how to fix the vulnerability.

About

This code is the demonstration of using path traversal to exploit a poorly coded upload file fuction for malicious code injection on to a web server.

Topics

python flask injection python3 vulnerability insecure path-traversal

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages