greeting card program the presence of a remote file upload vulnerability, a registered user login you can upload a php executable code.
Google Dork : "Send amazing greetings to your friends and relative!"
trojandownloader : http://127.0.0.1/upload.php
First register and the site and go to upload the cards (after registration to upload)
After you have uploaded your shells , you will find it in this Path :
demo : http://server/cards/1275663706_thumb_oujda.php