Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Harvester Systems 2.3.1 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that upload PHP files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
public knowledge project open harvester systems 1.0 |
||
public knowledge project open harvester systems 1.0.1 |
||
public knowledge project open harvester systems 2.0.0 |
||
public knowledge project open harvester systems 2.0.1 |
||
public knowledge project open harvester systems 2.3.0 |
||
public knowledge project open harvester systems |