WebZip

MediumWeb Security

Overview

We developed this service to help people, however it was hacked and someone acquired access to /flag.txt.
Flag Format: Flag{}

Lab Details

Prerequisites & Requirements

Basic operating system and web security knowledge specially file upload vulnerabilities

What will you learn?

Local file read via vulnerable zip file upload

Tools

Browser
zip command

Job Positions

Penetration Tester

Tags

LfrUnrestricted File UploadInput ValidationOwasp Top 10Directory Traversal