an arbitrary file upload vulnerability

[lomo5]

Based on the description of this article , it is suggested that the parameter re.findall() at line 127 be changed.Change to:
fn = re.findall(r'Content-Disposition.*name="file"; filename="([^\/]*)"', line)

[red78massive1573]

Based on the description of this article , it is suggested that the parameter re.findall() at line 127 be changed.Change to: fn = re.findall(r'Content-Disposition.*name="file"; filename="([^\/]*)"', line)

line should be changed into line.decode() since it is a byte-like object.