Using this vulnerability users can upload images from any image URL.
Just change upload type using inspect element (from “type=file” to “type=url”) , paste URL in text field and hit enter or click on “Update Profile”. Your profile photo will be changed to photo from URL.
P.S Im sorry for my bad english.