BloodBank Managing System Unrestricted File Upload Vulnerability Leading to Remote Code Execution

A vulnerability allowing arbitrary file uploads has been identified in the BloodBank Managing System version 1.0. The issue resides in the request_blood.php file, where an unknown function fails to properly validate uploaded files. This lack of validation allows users to upload files without restrictions on file type or content. The uploaded files are saved in a directory that is accessible via the web, enabling the execution of malicious PHP files. The vulnerability can be exploited remotely, and the public nature of the exploit increases its risk.

Impact

Exploitation of this vulnerability allows for arbitrary file uploads, which can be leveraged to execute malicious code on the server, leading to remote code execution.

Reproduction

To reproduce this vulnerability, upload a file through the request_blood.php page as an anonymous user. The server-side validation will not check the file's extension, MIME type, or content. After uploading a PHP file, it can be accessed directly via the web, where it will be executed by the server.