- This topic has 4 replies, 2 voices, and was last updated 5 years, 4 months ago by
.
- Posts
It seems I cant upload images here to show the problem. I’m having trouble getting the burp proxy exploit to work on the medium security DVWA. I’ll explain as best I can:
Burp successfully is intercepting the shell.jpg upload.
I am changing it to shell.php before forwarding.
When forwarding I get the error on the DVWA upload page simply saying “Image was not uploaded”.
Hi,
I re-tried today, with several attempts at renaming ‘shell2’, ‘shell3’ etc, but it doesn’t seem to upload. Still the same ‘your image was not uploaded’ in red text.
I believe I solved the issue, sort of. Reading the burp suite output I noticed that there were cookies for security=high. It seems that sometimes when submitting security to medium it may glitch and still retain high security. After going back and re-submitting it as medium security it worked fine. However, this did happen a couple of times in a row, so it took a few tries.
Thanks.
- You must be logged in to reply to this topic.