Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2018-1000659
HistorySep 06, 2018 - 5:29 p.m.

Directory traversal

2018-09-0617:29:00
PRIOn knowledge base
www.prio-n.com
5

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.4%

JSON

LimeSurvey version 3.14.4 and earlier contains a directory traversal in file upload that allows upload of webshell vulnerability in file upload functionality that can result in remote code execution as authenticated user. This attack appear to be exploitable via An authenticated user can upload a specially crafted zip file to get remote code execution. This vulnerability appears to have been fixed in after commit 72a02ebaaf95a80e26127ee7ee2b123cccce05a7 / version 3.14.4.

CPENameOperatorVersion
limesurveyle3.14.4

Related

nvd 1
cve 1
osv 1
cvelist 1
openvas 1
nvd
nvd
CVE-2018-1000659
2018-09-06 17:29:00
cve
cve
CVE-2018-1000659
2022-10-03 16:21:59
osv
osv
CVE-2018-1000659
2018-09-06 17:29:00
cvelist
cvelist
CVE-2018-1000659
2022-10-03 16:21:59
openvas
openvas
LimeSurvey <= 3.14.3 Multiple Vulnerabilities
2018-09-07 00:00:00

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.4%

JSON
Related for PRION:CVE-2018-1000659
nvd1cve1osv1cvelist1openvas1