Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_114283HistoryJun 05, 2024 - 12:00 a.m.
Unrestricted File Upload
2024-06-0500:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
5
file upload
vulnerability
source data
scanner
usage
AI Score
8
Confidence
High
Unrestricted file upload vulnerability occurs when the application suffers from a lack of validation of files being uploaded to its filesystem. When an attacker is able to upload files not matching the application expectations in terms of names, type, content or size, it could lead to various issues such as arbitrary files overwrite, denial of service or even remote code execution.
Note that this plugin requires the βFile Uploadβ assessment option enabled in the scan configuration.
No source dataAI Score
8
Confidence
High