Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:49 p.m.16 views

CVE-2014-5017

SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx parameter in a JSON request to admin/participants/sa/getParticipantsjson, related to a search paramet...

7.5CVSS8.8AI score0.01897EPSS
Exploits1References1
NVD
NVD
added 2014/07/21 2:55 p.m.18 views

CVE-2014-5017

SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx parameter in a JSON request to admin/participants/sa/getParticipantsjson, related to a search paramet...

7.5CVSS8.3AI score0.01897EPSS
Exploits1References2
Cvelist
Cvelist
added 2014/07/21 2:0 p.m.27 views

CVE-2014-5017

SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx parameter in a JSON request to admin/participants/sa/getParticipantsjson, related to a search paramet...

8.3AI score0.01897EPSS
Exploits1References2
CVE
CVE
added 2014/07/21 2:0 p.m.48 views

CVE-2014-5017

The CVE-2014-5017 entry describes an SQL injection in LimeSurvey 2.05+ Build 140618 (CPDB) affecting admin/participants/sa/getParticipants_json via the sidx parameter in a JSON request, related to a search parameter. The root cause is improper sanitization of the sidx value in CPDB’s code path (a...

7.5CVSS8.7AI score0.01897EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder