[SECURITY] /fileupload and XSS

adrian.domarecki · April 11, 2024, 1:44pm

I have two problems regarding the security of the application:

How do I disable the ability to upload files via URL: exampledomain.com/fileupload to my app? I haven’t users in my application.
A critical Cross-Site Scripting (XSS) vulnerability in URL: Loading.... An attacker can inject and execute malicious JavaScript code on the user’s browser through this vulnerability, potentially compromising sensitive information on the main domain. How can I solve this?

system · June 20, 2024, 1:45pm

This topic was automatically closed after 70 days. New replies are no longer allowed.

Topic		Replies	Views
Security Mitigation Measure for File Manager Database	2	649	March 26, 2022
Securing file upload - Need Help! Need help	16	1229	August 3, 2023
Uploaded file security Need help	2	299	July 29, 2022
Secure file upload (dealing with Virus') Questions	5	903	February 18, 2025
Uploaded files have new/different url and cannot with no access Bugs	2	438	October 4, 2017