Razz
Razz
**Describe the bug** Attacker can upload files with dangerous types to the OpenDocMan 1.4.4 via add.php using MIME-bypass. File is available under specific ID, which is returned in response from...
## Steps to reproduce How'd you do it? 1. Update msf to latest version (v6.4.0-dev) 2. Add bad host line in /etc/hosts (ex. `127.0.0.1 badhost.host.` - with dot at the...