Code-Projects Online Lot Reservation System Unrestricted File Upload Vulnerability

A vulnerability allowing unrestricted file upload has been identified in Code-Projects Online Lot Reservation System version 1.0. The issue resides in the file 'edithousepic.php', where inadequate validation of the 'image' argument permits the upload of arbitrary files. This vulnerability can be exploited remotely and may lead to the execution of malicious code on the server.

Impact

Exploitation of this vulnerability allows attackers to upload malicious files, such as web shells, which can be executed to run arbitrary commands on the server. This could result in gaining full control over the server and potentially infiltrating internal networks.

Reproduction

To reproduce this vulnerability, first, obtain an administrator session through SQL injection. Then, upload a web shell disguised as an image file to 'edithousepic.php' using the 'image' parameter. After the upload, execute the uploaded shell by sending a request to the 'houseimg' directory with a command to be executed.

Remediation

It is recommended to implement strict file type verification, check the MIME type of uploaded files, rename uploaded files to prevent execution of original file names, and configure the server to prohibit execution of files in the upload directory.