Hello, I'm a penetration test engineer
I found that the upload function point of the interface did not verify the suffix or content of the uploaded file, resulting in the arbitrary upload of maliciously constructed content for xss hijacking.
The text was updated successfully, but these errors were encountered:
Hello, I'm a penetration test engineer

I found that the upload function point of the interface did not verify the suffix or content of the uploaded file, resulting in the arbitrary upload of maliciously constructed content for xss hijacking.
The text was updated successfully, but these errors were encountered: