file-access-vuln
Entry P1 category router for file access and upload workflows. Use when testing download endpoints, file paths, local file inclusion, upload flows, preview pipelines, archive extraction, or storage and sharing boundaries.
How do I install this agent skill?
npx skills add https://github.com/yaklang/hack-skills --skill file-access-vulnIs this agent skill safe to install?
- Gen Agent Trust Hubpass
This skill serves as a documentation-based router for file access vulnerability testing workflows. It is purely instructional and contains no executable code, network operations, or security risks.
- Socketpass
No alerts
- Snykpass
Risk: LOW · No issues
- ZeroLeakspass
Score: 93/100 · 2 sections analyzed
What does this agent skill do?
File Access Router
This is the routing entry point for filesystem paths, download endpoints, upload pipelines, and file preview handling.
When to Use
- Parameters, filenames, download endpoints, or import flows influence file paths
- The target supports upload, preview, transcoding, extraction, sharing, download, or proxied file access
- You need to decide whether this is path traversal/LFI or an upload-validation/processing-chain issue
Skill Map
- Path Traversal LFI: path traversal, file read, wrapper abuse, include chains
- Upload Insecure Files: upload validation, storage paths, processing chains, overwrite risk, preview/share boundaries
Recommended Flow
- First identify whether the entry point is a path parameter, download endpoint, or upload workflow
- Then locate whether the issue appears in accept, store, process, or serve stages
- Small path-chain and upload-bypass samples are merged into the main topic skills; no separate payload entry is needed
Related Categories
How can the creator link this skill?
Add the canonical catalog link to the repository README so users can inspect current installs and available audits. The publishing guide covers the complete discovery path.
<a href="https://skillzs.dev/skills/yaklang/hack-skills/file-access-vuln">View file-access-vuln on skillZs</a>