Description
An arbitrary file upload vulnerability in the plugin manager of LimeSurvey v5.4.15 allows attackers to execute arbitrary code via a crafted PHP file.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Cross-Site Request Forgery (2.0.1.6)
WordPress Plugin HTML5 AV Manager for WordPress 'custom.php' Arbitrary File Upload (0.2.7)
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2020-26185)
WordPress Plugin Mimetic Books Cross-Site Scripting (0.2.13)
WordPress Plugin JS Job Manager Unspecified Vulnerability (1.0.9)