Lucene search
K

5 matches found

Circl
Circl
added 2020/04/14 5:13 p.m.9 views

CVE-2019-9960

creationtimestamp| type| source ---|---|--- 2020-04-14 17:13:45+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/limesurveyziptraversals.rb 2025-02-06 03:13:44+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:20+00:00|...

9.8CVSS7.3AI score0.13373EPSS
Exploits2References1
Metasploit
Metasploit
added 2020/04/08 6:31 p.m.84 views

LimeSurvey Zip Path Traversals

This module exploits an authenticated path traversal vulnerability found in LimeSurvey versions between 4.0 and 4.1.11 with CVE-2020-11455 or 'LimeSurvey Zip Path Traversals', 'Description' = %q This module exploits an authenticated path traversal vulnerability found in LimeSurvey versions betwee...

9.8CVSS9.4AI score0.96986EPSS
Exploits6
OSV
OSV
added 2019/03/24 1:29 a.m.17 views

CVE-2019-9960

The downloadZip function in application/controllers/admin/export.php in LimeSurvey through 3.16.1+190225 allows a relative path...

9.8CVSS6.8AI score
Exploits0References1
CVE
CVE
added 2019/03/24 12:27 a.m.104 views

CVE-2019-9960

LimeSurvey up to version 3.16.1+190225 is affected by CVE-2019-9960 via the downloadZip function in application/controllers/admin/export.php, which improperly handles relative paths and enables arbitrary file download. This is described as a path-traversal vulnerability with high to critical impa...

9.8CVSS9.3AI score0.13373EPSS
Exploits2References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/03/24 12:0 a.m.25 views

CVE-2019-9960

The downloadZip function in application/controllers/admin/export.php in LimeSurvey through 3.16.1+190225 allows a relative path. Bugs...

9.8CVSS0.8AI score0.13373EPSS
Exploits2References5
Rows per page
Query Builder