file_uploads.md

File Upload Bugs

In this session we'll talk about bugs relating to file uploads, a broad but critical category of vulnerabilities.

What you'll learn

• File uploads
  • How multipart POSTs work
  • Filename-based attacks
  • MIME type attacks
  • Hiding data in PNG files
  • Mitigation

Video

<iframe id="ytplayer" type="text/html" width="640" height="360" src="https://www.youtube-nocookie.com/embed/xpCLMz3efUw?rel=0&autoplay=0&origin=https://hacker101.com" frameborder="0"></iframe>