Unrated severityNVD Advisory· Published Sep 23, 2012· Updated Jun 16, 2026
CVE-2011-5195
CVE-2011-5195
Description
Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Conference Systems 2.3.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that upload a PHP file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
24cpe:2.3:a:public_knowledge_project:open_conference_systems:*:*:*:*:*:*:*:*+ 23 more
- cpe:2.3:a:public_knowledge_project:open_conference_systems:*:*:*:*:*:*:*:*range: <=2.3.4
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:1.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1.0-1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1.1-1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1.1.-2:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.1.2-1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:public_knowledge_project:open_conference_systems:2.3.3-1:*:*:*:*:*:*:*
- (no CPE)range: <=2.3.4
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/18266nvdExploit
- secunia.com/advisories/47330nvdVendor Advisory
- osvdb.org/77995nvd
News mentions
0No linked articles in our index yet.