CVE-2023-3187

Name of the Vulnerable Software and Affected Versions PHPGurukul Teachers Record Management System version 1.0

Description A critical issue has been found in the Profile Picture Handler component, specifically in the file /changeimage.php. The manipulation of the newpic argument leads to unrestricted upload. This issue can be exploited remotely.

Recommendations For PHPGurukul Teachers Record Management System version 1.0, consider disabling the /changeimage.php file or restricting access to it until a fix is available. Avoid using the newpic argument in the affected Profile Picture Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.