Critical Vulnerability Information Vulnerability Type Arbitrary File Upload Vulnerability Vulnerability Description In the file , the code does not validate the file extension of uploaded files. This allows attackers to upload files of any type, including those containing malicious scripts. Relevant Code Snippets Vulnerability Impact Attackers can upload files containing malicious scripts, such as , enabling execution of arbitrary code or other malicious activities. Example Screenshot shows the successful upload and execution of a malicious script, resulting in a pop-up alert box. Risk Level Not specified Participants electronic created the task, 8 days ago