Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Openresty is returning 413 response #61

Open
preetkaran20 opened this issue Feb 20, 2022 · 3 comments
Open

Openresty is returning 413 response #61

preetkaran20 opened this issue Feb 20, 2022 · 3 comments
Labels
bug Something isn't working good first issue Good for newcomers HacktoberFest

Comments

@preetkaran20
Copy link
Member

Describe the bug
Currently, if we upload a file of size more than 2.5 MB in unrestricted file upload vulnerability, we will see the 413 Request Entity Too Large error in response. We are looking to not throw errors from openresty and let the vulnerable applications handle it the large request entity

image

To Reproduce

  1. Go to Unrestricted File Upload Vulnerability
  2. Click on Level1 and upload an image file
  3. Go to developer tools and see the network tab for errors and it will show 413 error.

Expected behavior
OpenResty should not throw 413 errors and let the application throw the error. So we need to remove the limitation from openresty or make it 100MB of size.

Solution
Follow the below link for adding configuration to not restrict the file-upload: https://www.keycdn.com/support/413-request-entity-too-large#nginx
@preetkaran20 preetkaran20 added bug Something isn't working good first issue Good for newcomers labels Feb 20, 2022
@vanjo9800
Copy link

Hi, can I work on this issue as part of the Hacktoberfest 2022 campaign?

@preetkaran20
Copy link
Member Author

Hi @vanjo9800 ,

Sure, assigned the issue to you.

thanks,
Karan

@h4r1337
Copy link

h4r1337 commented Oct 13, 2022

Are you still working on this @vanjo9800 ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working good first issue Good for newcomers HacktoberFest
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@vanjo9800 @preetkaran20 @h4r1337