Summary #

Invicti detected that the application is vulnerable to the arbitrary file creation.

Impact #

Due to lack of input validation this allows an attacker to create arbitrary files on the target system.

Remediation #

Your application should filter metacharacters from the supplied input.

Classifications #
CWE-20; OWASP 2017-A5

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo