Description

A path disclosure vulnerability was found in Limesurvey before 3.17.14 that allows a remote attacker to discover the path to the application in the filesystem.

Remediation

References

CVE-2019-16176

Related Vulnerabilities

WebLogic Improper Input Validation Vulnerability (CVE-2019-12400)

WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Privilege Escalation (2.6.4)

WordPress Plugin The Official Facebook Chat Cross-Site Request Forgery (1.2)

Serendipity Other Vulnerability (CVE-2005-1448)

PHP NULL Pointer Dereference Vulnerability (CVE-2016-9934)

Severity

Medium

Classification

CVE-2019-16176 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities