Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V11 - Business Logic

No Antivirus - EICAR file Upload

POC

  • In the file upload area, upload test malware file (EICAR)
  • Observe that there is no AV installed on the web server that stops uploading EICAR file

Impact

Medium

Likelihood

Low