CSRF Vulnerability in Public Knowledge Project Open Conference Systems
CVE-2011-5195

Currently unrated

Key Information:

Vendor

Public Knowledge Project

Status
Open Conference Systems
Vendor
CVE Published:
23 September 2012

What is CVE-2011-5195?

A CSRF vulnerability exists in the file upload functionality of Public Knowledge Project Open Conference Systems version 2.3.4 and earlier. This flaw allows remote attackers to exploit the authentication of administrators, enabling them to submit unauthorized requests that could lead to the upload of malicious PHP files. Consequently, this can compromise the integrity and security of the application, potentially allowing attackers to execute arbitrary code on the server and gain unauthorized access to sensitive data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/47330
third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/77995
vdb-entryx_refsource_OSVDB
http://www.exploit-db.com/exploits/18266
exploitx_refsource_EXPLOIT-DB

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.