Unauthorised File Upload

Im maintaining a laravel application that has a feature to upload image files to the server. Recently I could notice unwanted files being uploaded to the image files folder . The application runs on Apache. We face thiis issue when Php File upload option is enabled,

How to resolve. Please advice