A vulnerability classified as critical has been found in Petrol Pump Management Software 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument email image leads to unrestricted upload.
This vulnerability is traded as CVE-2024-27747. Access to the local network is required for this attack. There is no exploit available.