Code-Projects Simple Food Ordering System Unrestricted File Upload Vulnerability in addproduct.php

A file upload vulnerability has been identified in Code-Projects Simple Food Ordering System version 1.0. The issue arises in the addproduct.php file, where the photo argument can be manipulated to allow unrestricted file uploads. This vulnerability is due to inadequate validation of uploaded files, including insufficient checks on file type, content, extension, and size. As a result, attackers can upload malicious files, such as web shells, to the server, potentially leading to remote code execution and a complete system compromise.

Impact

Exploitation of this vulnerability allows for unrestricted file uploads, which can be used to upload and execute malicious files on the server, such as web shells. This could lead to remote code execution, unauthorized access, and a complete compromise of the system.

Reproduction

To reproduce this vulnerability, access the addproduct.php file upload functionality. Upload a malicious PHP file, such as one named shell.php containing a web shell payload, through the vulnerable interface. After uploading, the file can be accessed and executed via the web server.