phpgurukul News Portal File Upload Vulnerability in upload.php

A file upload vulnerability has been identified in the phpGurukul News Portal Project version 4.1. The issue resides in upload.php, located within the plugins/jquery.filer/php/ directory. This vulnerability allows users to upload files of any type to the server without any form of identity authentication. Exploitation of this vulnerability could enable attackers to upload PHP files and gain system permissions.

Impact

Exploitation of this vulnerability allows for arbitrary file uploads, potentially leading to the execution of uploaded PHP files and escalation of privileges on the server.

Reproduction

To reproduce this vulnerability, send a POST request to the upload.php endpoint with a file included in the 'files' form-data field. The uploaded file can be a PHP file containing a payload, such as a simple script that echoes a message. Once the file is uploaded, it can be accessed through the plugins/jquery.filer/uploads/ directory, where the uploaded file will be executed if it is a PHP file.