CVE-2023-1734
SourceCodester Young Entrepreneur E-Negosyo System 1.0 contains a vulnerability where the image parameter in the endpoint admin/products/controller.php?action=add can be manipulated to perform an unrestricted file upload. The issue is exploitable remotely, enabling an attacker to upload arbitrary...