SourceCodester Pet Grooming Management Software Unrestricted File Upload Vulnerability

A vulnerability exists in SourceCodester Pet Grooming Management Software version 1.0, specifically in the file '/admin/profile.php'. This vulnerability allows for unrestricted file uploads due to inadequate validation and filtering of user-uploaded files. Malicious script files, such as PHP backdoors, can be uploaded and executed, potentially leading to a complete compromise of the web server.

Impact

Exploitation of this vulnerability allows for remote code execution on the server, with the uploaded malicious files executed as scripts. This could lead to a full takeover of the server, including access to the database and sensitive credentials.

Reproduction

To reproduce this vulnerability, log in to the application and navigate to the profile page. Upload an image file containing a PHP web shell, saving it with a '.php' extension. After the upload, the web shell can be accessed through the upload directory, allowing for command execution on the server.

Remediation

It is recommended to implement server-side validation of uploaded files, ensuring that only safe file types are accepted. Additionally, uploaded files should be renamed and stored outside of the web root to prevent execution of arbitrary code.