A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pages_account.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2024-0194. The attack may be initiated remotely. Furthermore, there is an exploit available.