All Collections
HackEDU Lesson Help
Command Injection Lesson Help
Add File Vulnerability Not Fixed (Command Injection Lesson)
Add File Vulnerability Not Fixed (Command Injection Lesson)
Rachel Yonan avatar
Written by Rachel Yonan
Updated over a week ago

Issue:

The command injection vulnerability has not been fixed in the create file function.


Test 1:

Please review the Defense section of the lesson and try again.

Remember that using regular expressions to filter out dangerous OS injection syntax is hard to do correctly and not recommended. Try thinking about what native function you can use to achieve the same result.

Test 2:

Please review the Defense section of the lesson and try again.

Remember that using regular expressions to filter out dangerous OS injection syntax is hard to do correctly and not recommended. Try thinking about what native function you can use to achieve the same result.

Test 3:

Please review the Defense section of the lesson and try again.

Remember that using regular expressions to filter out dangerous OS injection syntax is hard to do correctly and not recommended. Try thinking about what native function you can use to achieve the same result.

Did this answer your question?