Code-Projects Online Music Site Unrestricted File Upload Vulnerability

A vulnerability allowing arbitrary file upload has been identified in Code-Projects Online Music Site version 1.0. The issue resides in the AdminUpdateCategory.php file, where the txtimage argument can be manipulated to bypass file type restrictions. This vulnerability can be exploited remotely, without authentication, allowing attackers to upload malicious scripts that could be executed on the server, potentially leading to unauthorized control, data theft, or further attacks.

Impact

Exploitation of this vulnerability allows for unrestricted file uploads, which can be used to execute malicious scripts on the server, potentially leading to full server control, data theft, or other security breaches.

Reproduction

To reproduce this vulnerability, send a POST request to the AdminUpdateCategory.php file within the Administrator/PHP directory. Include a crafted txtimage argument that bypasses the Content-Type and Content-Disposition checks, such as a file named '11111.png' containing PHP code that, when executed, could be used to control the server.

Remediation

No specific mitigation measures are known for this vulnerability.