Muscial

**Name of the Vulnerable Software and Affected Versions** Expense Management System version 1.0 **Description** An issue in the Expense Management System allows a local attacker to execute arbitrary code via a crafted file uploaded to the "sign-up.php" component. **Recommendations** For Expense Management System version 1.0, consider disabling the file upload functionality in the sign-up.php component until a patch is available. Restrict access to the sign-up.php component to minimize the risk of exploitation. Avoid using the file upload feature in the affected component until the issue is resolved.