CVE-2012-3572

OSCC MyMeeting < 3.0.1 and MyMesyuarat 09b-1 - Authenticated Remote Code Execution via Document Upload

Title source: llm
STIX 2.1

Description

Open Source Competency Center (OSCC) MyMeeting 3.0.1 and earlier, and MyMesyuarat 09b-1, does not properly verify uploaded documents, which allows remote authenticated users to execute arbitrary PHP code via a crafted document.

Scores

EPSS 0.0095
EPSS Percentile 56.9%

Details

CWE
CWE-20
Status published
Products (2)
nurul_hidayah_hamazulan/mymesyuarat 09b-1
oscc/mymeeting < 3.0.1
Published Sep 11, 2012
Tracked Since Feb 18, 2026