#BugBountyProTip Some caching servers would cache files larger than 2mb. if app accepts file upload, then upload a large file and access it #multiple times while logged-in. It will be cached. Then access it without login, and pingo! unauthenticated access to sensitive files!
Content-Disposition: form-data; name="FactorImage"; filename="Untitled.jpg\test.aspx"
Payloads - https://github.com/1N3/IntruderPayloads/tree/master/Uploads