itsourcecode E-Commerce Website Unrestricted File Upload Vulnerability

A vulnerability allowing unrestricted file uploads has been identified in itsourcecode E-Commerce Website version 1.0. The issue resides in the admin/products.php file, where inadequate validation of uploaded files permits the introduction of malicious content, such as PHP web shells, disguised as harmless file types like .jpg. Once uploaded, these files can be executed through a web browser, potentially leading to a full server compromise and exposure of sensitive information.

Impact

Exploitation of this vulnerability could result in a complete compromise of the server, allowing attackers to execute arbitrary code, access and manipulate sensitive data, and disrupt services.

Reproduction

To reproduce this vulnerability, upload a file through the profile picture upload function in userprofile.php. Intercept the request with Burp Suite and change the file extension from .php to .jpg, adjusting the Content-Type header to ensure the server accepts it as a PHP file. After uploading, the file can be accessed via its public URL.