Itsourcecode Open Source Job Portal Unrestricted File Upload Vulnerability

A critical unrestricted file upload vulnerability has been identified in itsourcecode Open Source Job Portal version 1.0. The issue resides in the file '/admin/user/controller.php?action=photos', where inadequate server-side validation allows attackers to upload malicious files disguised as images. This vulnerability can be exploited remotely, potentially leading to a complete system compromise and unauthorized access to server controls.

Impact

Exploitation of this vulnerability allows for unrestricted file uploads, which can be used to upload malicious scripts that are executed on the server, leading to a takeover of server controls.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/jobportal/admin/user/controller.php?action=photos' with an embedded image header (such as GIF89a) followed by malicious PHP code. This can be done using a web application testing tool or by manually crafting the request with the appropriate headers and file content.

Remediation

It is recommended to implement a dual whitelist mechanism for file extensions and MIME types, verifying that uploaded files match their declared types. Additionally, server configurations should be adjusted to prevent script execution in directories where uploads are stored.