CSRF Vulnerability in Public Knowledge Project's Open Journal Systems
CVE-2011-5196

Currently unrated

Key Information:

Vendor

Public Knowledge Project

Status
Open Journal Systems
Vendor
CVE Published:
23 September 2012

What is CVE-2011-5196?

A cross-site request forgery (CSRF) vulnerability exists in the file upload functionality of Public Knowledge Project's Open Journal Systems, specifically in versions 2.3.6 and earlier. This flaw enables remote attackers to exploit the vulnerability to hijack the authentication of administrators, facilitating unauthorized uploads of PHP files. Malicious actors can use this weakness to compromise the security of affected systems, potentially leading to further exploits and data breaches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/47330
third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/77995
vdb-entryx_refsource_OSVDB
http://www.exploit-db.com/exploits/18266
exploitx_refsource_EXPLOIT-DB

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.