))
Ep. 9 – Directory Traversal & LFI: From File Leaks to Full Server Crash
Manage episode 485690922 series 3643227
محتوای ارائه شده توسط Amin Malekpour. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Amin Malekpour یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
One markdown link copied server files. One poisoned log triggered remote code execution. One LFI crashed the entire server.
In this episode, we unpack three real-world exploits—directory traversal and local file inclusion flaws that went far beyond file reads. From silent data leaks to full server compromise, these attacks all started with a single trusted path.
Chapters:
00:00 - INTRO
01:07 - FINDING #1 - Server File Theft with Directory Traversal
09:23 - FINDING #2 - From File Inclusion to RCE via Log Poisoning
16:20 - FINDING #3 - LFI to Server Crash
24:09 - OUTRO
Want your pentest discovery featured? Submit your creative findings through the Google Form in the episode description, and we might showcase your finding in an upcoming episode!
🌍 Follow & Connect → LinkedIn, YouTube, Twitter, Instagram
📩 Submit Your Pentest Findings → https://forms.gle/7pPwjdaWnGYpQcA6A
📧 Feedback? Email Us → podcast@quailu.com.au
🔗 Podcast Website → Website Link
فصل ها
1. INTRO (00:00:00)
2. FINDING #1 - Server File Theft with Directory Traversal (00:01:07)
3. FINDING #2 - From File Inclusion to RCE via Log Poisoning (00:09:23)
4. FINDING #3 - LFI to Server Crash (00:16:20)
5. OUTRO (00:24:09)
10 قسمت
اشتراک گذاری
