Index Of Parent Directory Uploads Install Info

# Find all world-writable directories in web root
find /var/www/html -type d -perm 777
The attacker tests three common upload methods:
| Method | Description | Success Condition |
|--------|-------------|-------------------|
| WebDAV | PUT request via cadaver or curl -X PUT | WebDAV enabled on directory |
| Insecure Upload Form | Found via crawling or guessing /upload.html | No authentication/file validation |
| Writeable Directory via FTP | Uploaded via compromised FTP credentials | Directory permissions = 777 | index of parent directory uploads install
Example WebDAV upload:
curl -X PUT https://target.com/uploads/shell.php --data-binary @shell.php

Nginx uses the autoindex on; directive. Without an index file, it produces a similar listing. The parent directory link appears automatically due to filesystem navigation. # Find all world-writable directories in web root