CVE-2023-5185
Gym Management System Project v1.0 is vulnerable to
an Insecure File Upload vulnerability on the ‘file’
parameter of profile/i.php page, allowing an
authenticated attacker to obtain Remote Code Execution
on the server hosting the application.
Source: CVE-2023-5185