Description

LimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application/controllers/admin/LimeSurveyFileManager.php.

Remediation

References

CVE-2020-11455

Related Vulnerabilities

Oracle Application Server Other Vulnerability (CVE-2007-1609)

WordPress Plugin TC Custom JavaScript Cross-Site Scripting (1.2.1)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6634)

WordPress Plugin Browser and Operating System Finder Cross-Site Request Forgery (1.1)

Moodle Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2023-28334)

Severity

Medium

Classification

CVE-2020-11455 CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities