3 matches found
ProConf 6.0 - Insecure Direct Object Reference (IDOR)
Exploit Title: ProConf 6.0 - Insecure Direct Object Reference IDOR Date: 19/07/2018 Exploit Author: S. M. Zia Ur Rashid, SC Author Contact: https://www.linkedin.com/in/ziaurrashid/ Vendor Homepage: http://proconf.org & http://myproconf.org Version:...
CVE-2018-16606
CVE-2018-16606 is an IDOR flaw in ProConf prior to 6.1 that lets any author view all submitted papers (titles/abstracts) and associated authors’ personal information (name, email, organization, position) by altering the Paper ID (pid parameter). Exploitation details in the sources show a PoC wher...
IDOR On ProConf Peer-Review And Conference Management 6.0 File Disclosure
Exploit Title: IDOR on ProConf Peer-Review and Conference Management System Date: 19/07/2018 Exploit Author: S. M. Zia Ur Rashid Author Contact: https://www.linkedin.com/in/ziaurrashid/ Vendor Homepage: http://proconf.org & http://myproconf.org Affected Version:...