CVE-2012-1468

Open Journal Systems < 2.3.7 - Authenticated Remote Code Execution via Executable File Upload

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-1468. PoCs published by High-Tech Bridge.

AI-analyzed exploit summary This is a vulnerability writeup describing multiple issues in Open Journal Systems 2.3.6, including arbitrary file upload, deletion, and XSS. It provides step-by-step instructions for exploiting the file upload vulnerability but does not include executable exploit code.

Description

Incomplete blacklist vulnerability in Open Journal Systems before 2.3.7 allows remote authenticated users with the Author Role permission to execute arbitrary code by uploading a file with an executable extension that is not ".php", then accessing it via a direct request to the file in submission/original/ in the associated article directory, as demonstrated using .pHp, .asp, and other extensions.

Exploits (1)

exploitdb WRITEUP VERIFIED
by High-Tech Bridge · textwebappsphp
https://www.exploit-db.com/exploits/37001

This is a vulnerability writeup describing multiple issues in Open Journal Systems 2.3.6, including arbitrary file upload, deletion, and XSS. It provides step-by-step instructions for exploiting the file upload vulnerability but does not include executable exploit code.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Open Journal Systems 2.3.6
Auth required
Prerequisites: registered user account · access to submission functionality
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Various Sources x_refsource_confirm
http://pkp.sfu.ca/support/forum/viewtopic.php?f=2&t=8431
Various Sources x_refsource_confirm
http://pkp.sfu.ca/ojs/RELEASE-2.3.7

Scores

EPSS 0.0348
EPSS Percentile 87.6%

Details

Status published
Products (1)
pkp/open_journal_systems < 2.3.6
Published Sep 06, 2012
Tracked Since Feb 18, 2026