HTML5-Jquery-filedrop csrf file upload

2019.10.08

MR.5T1Y0 (ID)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: intext:post_file.php

Dorking in google
click post_file.php
Go to csrf paste your site
Example:site.com/(path)/post_file.php
Post file =pic
/ new_image
Upload your file
Haply dafece
Live:
http://zollibolli.ch/web/scripts/php/post_file.php
https://jtillman.com/engines/gallery/backend/filedrop/post_file.php

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

HTML5-Jquery-filedrop csrf file upload

Dork: intext:post_file.php

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.