Guo Jialiang

**Name of the Vulnerable Software and Affected Versions** Code-projects Shopping Portal version 1.0 **Description** The issue concerns an arbitrary file upload vulnerability in the insert-product.php page. This means that an attacker could potentially upload malicious files to the server, which could lead to various security issues. **Recommendations** For Code-projects Shopping Portal version 1.0, as a temporary workaround, consider disabling the file upload functionality in the insert-product.php page until a patch is available. Restrict access to this page to minimize the risk of exploitation. Avoid using the file upload feature in the affected page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.