Description
Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Harvester Systems 2.3.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that upload PHP files.
Published: 2012-09-23
Score: 6.8 Medium
EPSS: 2.0% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2011-5097 Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Harvester Systems 2.3.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that upload PHP files.
References
History

No history.

Subscriptions

Public Knowledge Project Open Harvester Systems
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T00:30:46.751Z

Reserved: 2012-09-23T00:00:00.000Z

Link: CVE-2011-5197

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-09-23T17:55:01.397

Modified: 2026-06-16T23:36:07.857

Link: CVE-2011-5197

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses
  • CWE-352

    Cross-Site Request Forgery (CSRF)