6 matches found
CVE-2021-44967
creationtimestamp| type| source ---|---|--- 2025-01-05 23:48:22+00:00| seen| https://bsky.app/profile/gothburz.bsky.social/post/3lezsmtrtgf2c 2025-01-06 10:54:26+00:00| published-proof-of-concept| https://t.me/ckeArsenal/310 2025-01-06 13:23:51+00:00| seen| https://t.me/ZeroDayru/370 2025-01-06...
Exploit for Unrestricted Upload of File with Dangerous Type in Limesurvey
CVE-2021-44967 Exploit Title: LimeSurvey 5.2.4 - Authen...
LimeSurvey <= 5.2.4 RCE Vulnerability
LimeSurvey is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2021-44967
A Remote Code Execution RCE vulnerabilty exists in LimeSurvey 5.2.4 via the upload and install plugins function, which could let a remote malicious user upload an arbitrary PHP code file. NOTE: the Supplier's position is that plugins intentionally can contain arbitrary PHP code, and can only be...
CVE-2021-44967
LimeSurvey 5.2.4 is affected by a Remote Code Execution (RCE) via the Upload & Install Plugins function. The vulnerability allows a remote authenticated user to upload an arbitrary PHP code file and execute it on the server (e.g., a reverse shell), as demonstrated by multiple PoCs/exploits linked...
CVE-2021-44967
A Remote Code Execution RCE vulnerabilty exists in LimeSurvey 5.2.4 via the upload and install plugins function, which could let a remote malicious user upload an arbitrary PHP code file. NOTE: the Supplier's position is that plugins intentionally can contain arbitrary PHP code, and can only be...