Code-Projects Online Product Reservation System Unrestricted File Upload Vulnerability

A critical arbitrary file upload vulnerability has been identified in Code-Projects Online Product Reservation System version 1.0. The issue resides in the file '/handgunner-administrator/prod.php', where the product image upload functionality lacks proper validation. This flaw allows users to upload arbitrary files, potentially leading to remote code execution. The vulnerability can be exploited remotely, and an exploit is publicly available.

Impact

Exploitation of this vulnerability allows for unrestricted file uploads, which could be used to upload malicious files such as web shells. These uploaded files could be executed on the server, leading to remote code execution.

Reproduction

To reproduce this vulnerability, upload a file through the product image upload feature in the admin panel. The file will be saved in the 'upload/' directory without any validation. After uploading a PHP file containing a web shell, it can be accessed and executed by appending a command to the URL.