phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authentication.
The upload.php endpoint does not require authentication nor verify the format or extension of the uploaded file. An attacker can send an HTTP request to upload.php without logging in with an attached file of any format, including executable scripts (e.g., PHP webshell). After uploading the file to the server, the attacker can access its URL path and remotely execute the code contained within it in the context of the web server.
An attacker can gain full control over the server by executing arbitrary code (RCE), leading to violations of confidentiality, integrity, and availability of the system — including data theft, modification of portal content, or complete server takeover.
Apply patches available from the vendor according to references. Temporarily, it is recommended to: disable or secure the upload.php endpoint with an authentication mechanism, implement a whitelist of allowed file extensions, configure the web server to not execute scripts in directories designated for file uploads.
Phpgurukul News Portal Project version V4.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HPhpgurukul News Portal
APPPhpgurukul4.1
Related vulnerabilities
SQL Injection w Phpgurukul News Portal V4.1 (check_availablity.php)
Arbitrary File Deletion w Phpgurukul News Portal V4.1 (remove_file.php)
A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this i...
A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vuln...
A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vuln...