Code-Projects Student File Management System Unrestricted File Upload Vulnerability

A vulnerability allowing arbitrary file upload has been identified in Code-Projects Student File Management System version 1.0. This issue resides in the 'save_file.php' file, where the 'file' argument can be manipulated to bypass upload restrictions. The vulnerability can be exploited remotely, and successful exploitation may lead to the upload of malicious files, such as web shells, potentially compromising the server.

Impact

Exploitation of this vulnerability allows for unrestricted file uploads, which could be used to upload malicious files that may compromise the server.

Reproduction

To reproduce this vulnerability, log into the application with valid credentials. Then, send a POST request to 'save_file.php' with the 'file' parameter containing the filename of the file to be uploaded, and the 'stud_no' parameter with a student number. The uploaded file will be saved on the server, bypassing any file type restrictions.