Code Execution via File Upload

Severity: Critical

Summary#

Invicti detected a code execution via file upload. Invicti successfully uploaded a file and when requesting the uploaded file, code is executed in the context of the web server.

Impact#

The web server can be compromised by uploading and executing a web-shell which can run commands, browse system files, browse local resources, attack other servers, and exploit the local vulnerabilities, and so forth.

Remediation#

Never accept a filename and its extension directly without having a white-list filter.
Uploaded directory should not have any "execute" permission.

Classifications#

OWASP 2013-A1, HIPAA-164.306(a), OWASP 2017-A1, CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H, CWE-94, WASC-42, CAPEC-210, ISO27001-A.14.2.5, PCI v3.2-6.5.1

Invicti Security Insights

Why Framework Choice Matters in Web Application Security

Select Category

Critical
High
Medium
Low
Best Practice
Information

Search Vulnerability

Code Execution via File Upload

Related Articles

Build your resistance to threats. And save hundreds of hours each month.