CTFhub—File upload (js front-end verification)

Others 2021-01-24 02:10:50 views: null

CTFhub—File upload (js front-end verification)

Article Directory

CTFhub—File upload (js front-end verification)
1. One-sent Trojan Horse
Two, the idea of two methods
Three, method one step
Four, method two steps

1. One-sent Trojan Horse

       文件名为hack.php
<?php @eval($_POST['123']); ?>

Two, the idea of two methods

When we upload files, our client's javascript will check the file type, and only allow uploading of files with ".jpg", ".png" and ".gif"

Method 1. We can turn off the js front-end verification and prevent him from verifying, then we can directly upload a sentence of Trojan horse.
Method 2. Change the suffix of the one-sentence Trojan horse to the type allowed by verification, and then change the package after capturing the package through burpsuite

Three, method one step

Firefox—about:config (advanced preferences)
Insert picture description here
—Turn off JavaScript. After turning off JavaScript, there is no restriction on the file upload type. You can upload hack.php

directly and use Ant Sword or hackbar to get the flag.

Four, method two steps

Change the one-sentence Trojan horse hack.php to hack.jpg
browser settings proxy 127.0.0.1:8080
burpsuite opens the interception request,
Insert picture description here
intercepts the request package, changes the suffix of hack.jpg back to hack.php and then forwards (Forward) to

upload successfully. . .

Get the flag...

Guess you like

Origin blog.csdn.net/weixin_46329243/article/details/112990819

CTFhub—File upload (js front-end verification)

ctfhub skill tree - file upload - front-end verification

CTFhub—File upload (no verification)

Front-end file upload

CTFHub skill tree -Web- file upload - no verification

File upload vulnerability - upload shooting range 1-2 pass notes (how to distinguish between front-end verification and back-end verification)

Front-end js some verification

Front-end with compressed js upload pictures

Pure front-end JS implements file upload, parsing and rendering pages

Knowledge of front-end file upload

Front-end large file upload source

Front-end sliding puzzle verification pure js combined call

CTFHUB - web - file upload

File upload for front-end and back-end data interaction

1.1 Bypass verification for file upload

File upload service, with verification OKHTTP

elementUI form upload file verification

Front-end security (1) file upload vulnerability attack and defense

Upload File button web front-end custom style

Front-end implementation of file upload (click+drag)

Encyclopedia of front-end js regular verification (a complete set of regular verification solutions) @莫成尘

Front-end file upload practice and back-end processing - file upload in blocks

CTFhub-file upload guide

Vue+elementui: front-end file upload and back-end file

Finally sorted out the knowledge points of "front-end large file upload", resuming the upload with the source code

Front-end file upload download and preview, file stream download file stream preview file stream

Front-end AsyncHttpClient, back-end SpringMvc batch upload file solution

File upload under joint debugging of front-end and back-end

Pure front-end JS zip package file and download

[JS] front-end base64 to image File object

Recommended

Ranking

SpringBoot-integrate redis

[Sword pointing to offer] Interview question 03: Repeated numbers in an array

Arrangement "Offer Penalty for prove safety" string

Browser prevent the automatic generation of fill and Echo have been saved account solutions

Work hard and never slacken——2022 Yinmai Information Year-End Summary

Install jdk7 on Linux system

App common dependency management tools

EduCoder-Web程序设计基础-html5— 给表单组件添加说明-第1关：label标签相关概念

Machine learning - clustering - density clustering algorithm notes

Ant's large model is exposed, AI+ finance enters the "big model" era

Daily

More

2024-04-30(36)

2024-04-29(5)

2024-04-28(12)

2024-04-27(29)

2024-04-26(22)

2024-04-25(32)

2024-04-24(30)

2024-04-23(30)

2024-04-22(5)

2024-04-21(0)