Simple-Image-Gallery-Web-App Exploit
Exploit: Unrestricted File Upload/RCE
Vendor/Source: https://www.sourcecodester.com/php/14903/simple-image-gallery-web-app-using-php-free-source-code.html
Proof of Concept:
Uploaded PHP shell as image during account creation
Navigate to /uploads
Use shell as needed
