| layout | title |
|---|---|
default |
File Upload Bugs |
In this session we'll talk about bugs relating to file uploads, a broad but critical category of vulnerabilities.
- File uploads
- How multipart POSTs work
- Filename-based attacks
- MIME type attacks
- Hiding data in PNG files
- Mitigation
<iframe id="ytplayer" type="text/html" width="640" height="360" src="https://www.youtube-nocookie.com/embed/xpCLMz3efUw?rel=0&autoplay=0&origin={{ site.url }}" frameborder="0"></iframe>