So I have been working on web application security for past some time. I also happened to write an article titled “Exploiting File Uploads for Fun and Profit” for Hakin9 magazine , which has been published recently. The article explains the various restrictions that are often imposed by web applications on the file being uploaded and how to get around these restrictions. Credit for the techniques described in the article goes to their respective authors.
You can download the complete article here