Arbitrary File Upload Vulnerability in F-logic DataCube3
An unrestricted file upload flaw exists within the setting_photo.php endpoint of the F-logic DataCube3 administrative panel (/admin/setting_photo.php). The application fails to adequately validate file extensions and MIME types before saving uploaded content to the server. By exploiting this weaknes...