We check for all input to see if the application can validate only required inputs. So no alphabets in a phone number or no file larger than 1mb.
The following example shows the that 100kb or larger file couldn’t be uploaded
Then a smaller file was inserted and the request intercepted by burp suite. We may see the data of the file on the intercepted request. Specifically “this is just a test”
Then the filer was changed on the repeater to a file with data over 100kb. The small file had “This is just a test” sentence in it. So change the sentence to 100* this is just a test.
This shows that the validation was only done on the UI.
Things to consider: