CVE-2024-9794

Name of the Vulnerable Software and Affected Versions Codezips Online Shopping Portal version 1.0

Description A critical issue has been found in the processing of the file /update-image1.php, where the manipulation of the productimage1 argument leads to unrestricted upload. This issue can be exploited remotely.

Recommendations For Codezips Online Shopping Portal version 1.0, consider restricting access to the /update-image1.php file until a patch is available. As a temporary workaround, avoid using the productimage1 argument in the affected file to minimize the risk of exploitation.