0 and labeled as crucial. This difficulty influences some unknown processing with the file /courses/Buyers.php?f=save. The manipulation with the argument img results in unrestricted add. The attack can be initiated remotely. The exploit is disclosed to the general public and may be applied. The related identifier of the vulnerability is VDB-270167.