File Upload Bugs

In this session we’ll talk about bugs relating to file uploads, a broad but critical category of vulnerabilities.

What you’ll learn

  • File uploads
    • How multipart POSTs work
    • Filename-based attacks
    • MIME type attacks
    • Hiding data in PNG files
    • Mitigation

Video