VulnerableApp-facade icon indicating copy to clipboard operation
VulnerableApp-facade copied to clipboard

Published 20 hours ago verified publisher icon SasanLabs

Openresty is returning 413 response

Open preetkaran20 opened this issue 3 years ago • 3 comments

Describe the bug Currently, if we upload a file of size more than 2.5 MB in unrestricted file upload vulnerability, we will see the 413 Request Entity Too Large error in response. We are looking to not throw errors from openresty and let the vulnerable applications handle it the large request entity

image

To Reproduce

  1. Go to Unrestricted File Upload Vulnerability
  2. Click on Level1 and upload an image file
  3. Go to developer tools and see the network tab for errors and it will show 413 error.

Expected behavior OpenResty should not throw 413 errors and let the application throw the error. So we need to remove the limitation from openresty or make it 100MB of size.

Solution Follow the below link for adding configuration to not restrict the file-upload: https://www.keycdn.com/support/413-request-entity-too-large#nginx

preetkaran20 avatar Feb 20 '22 12:02 preetkaran20

Hi, can I work on this issue as part of the Hacktoberfest 2022 campaign?

vanjo9800 avatar Oct 01 '22 10:10 vanjo9800

Hi @vanjo9800 ,

Sure, assigned the issue to you.

thanks, Karan

preetkaran20 avatar Oct 01 '22 12:10 preetkaran20

Are you still working on this @vanjo9800 ?

h4r1337 avatar Oct 13 '22 13:10 h4r1337