Full title: PKP-WAL 3.4.0-3 Remote Code Execution Exploit Category: web applications Platform: php PKP Web Application Library (PKP-WAL) versions 3.4.0-3 and below, as used in Open Journal Systems (OJS), Open Monograph Press (OMP), and Open Preprint Systems (OPS) before versions 3.4.0-4 or 3.3.0-16, suffer from a NativeImportExportPlugin related remote code execution vulnerability. # 0day.today @ http://0day.today/