Web Application Security Basics — Safe file upload and File I/O

Design flaw 1 : File Path Injection

Design flaw 2: Null byte injection

Design flaw 3: Not closing resources properly

File Upload Security

Attacks patterns against file I/O

Attack 1: Upload of dangerous content

Attack 2: Ability to Overwrite Other Files

Attack 3: Quota Overload DoS

Processing Archive formats

Positive Pattern: Object Reference Maps and Storing Upload Files

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store