The vulnerability of the Add Photo and Import Staff functions in the school management web system School ERP Pro allows a perpetrator to execute arbitrary codes.

The vulnerability of the Add Photo and Import Staff functions in the school management web system School ERP Pro relates to the unlimited loading of dangerous files. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by loading a specially created malware file...