Wuyangzihan

**Name of the Vulnerable Software and Affected Versions** code-projects Supplier Management System version 1.0 **Description** A critical issue has been found in the Picture Handler component of the Supplier Management System, affecting an unknown function of the file btn functions.php. This issue leads to unrestricted upload and can be exploited remotely. The exploit has been disclosed publicly. **Recommendations** For version 1.0, consider disabling the Picture Handler component or restricting its use until a fix is available. As a temporary workaround, avoid using the file btn functions.php to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.