CVE-2012-3572
OSCC MyMeeting < 3.0.1 and MyMesyuarat 09b-1 - Authenticated Remote Code Execution via Document Upload
Title source: llmDescription
Open Source Competency Center (OSCC) MyMeeting 3.0.1 and earlier, and MyMesyuarat 09b-1, does not properly verify uploaded documents, which allows remote authenticated users to execute arbitrary PHP code via a crafted document.
References (2)
Core 2
Core References
Product x_refsource_misc
http://sourceforge.net/projects/mymesyuarat/files/mymesyuarat/mymesyuarat%20ver0.9b-2.zip/download
Various Sources x_refsource_misc
http://www.mycert.org.my/en/services/advisories/mycert/2012/main/detail/904/index.html
Scores
EPSS
0.0095
EPSS Percentile
56.9%
Details
CWE
CWE-20
Status
published
Products (2)
nurul_hidayah_hamazulan/mymesyuarat
09b-1
oscc/mymeeting
< 3.0.1
Published
Sep 11, 2012
Tracked Since
Feb 18, 2026