Campcodes Advanced Online Voting System Unrestricted File Upload Vulnerability

A critical vulnerability allowing unrestricted file uploads has been identified in Campcodes Advanced Online Voting System version 1.0. The issue resides in the file '/admin/voters_add.php', where the 'photo' argument can be manipulated to bypass file type and content validation. This flaw enables attackers to upload malicious PHP scripts, such as web shells, which can be executed to gain control over the server.

Impact

Exploitation of this vulnerability allows for arbitrary file uploads, which can be used to execute malicious scripts on the server. This could lead to a complete compromise of the web application and potentially the underlying server, depending on the execution context.

Reproduction

To reproduce this vulnerability, authenticate to the application and navigate to the '/admin/voters_add.php' page. Upload a file through the 'photo' parameter, ensuring it is a PHP script disguised as an image. Once uploaded, the file can be accessed and executed as a web shell.

Remediation

Users are advised to implement strict file upload validations, such as whitelisting allowed file types and verifying file contents. Additionally, uploaded files should be stored in non-web-accessible directories and with execution permissions disabled.