id: exposed-jquery-file-upload info: name: Exposed jQuery File Upload author: dhiyaneshDk severity: medium reference: - https://www.exploit-db.com/exploits/45584 tags: exposure,jquery requests: - method: GET path: - "{{BaseURL}}/jquery-file-upload/server/php/" matchers-condition: and matchers: - type: regex regex: - '^{\"files\":' part: body - type: word words: - "text/plain" part: header