I need to test a website and I found a vulnerable file upload. It is only checked whether or not the file extension is .jpg, .png or .pdf. I can bypass this by uploading a file named script.php.jpg
. I know that uploaded files are stored in /uploads
.
How can I execute that script? When typing http://example.com/uploads/script.php.jpg
in my browser, the script is not executed. I know that the server can execute php code and that the server has said file vulnerability.