itsourcecode E-Commerce Website Unrestricted File Upload Vulnerability

A vulnerability allowing arbitrary file uploads has been identified in itsourcecode E-Commerce Website version 1.0. The issue resides in the admin/users.php file, where an unknown function fails to properly validate and filter uploaded files. This flaw enables attackers to upload malicious files, such as PHP web shells, disguised as harmless image files. Once uploaded, these files can be executed through a web browser, potentially leading to a full server compromise and exposure of sensitive data.

Impact

Exploitation of this vulnerability allows for full server compromise, execution of uploaded malicious files, and access to sensitive data.

Reproduction

To reproduce this vulnerability, upload a file through the profile picture upload function in userprofile.php. Intercept the request with Burp Suite and change the file extension from .php to .jpg, adjusting the Content-Type header to ensure the server accepts it as a PHP file. After uploading, the file can be accessed via its public URL.