Vulnerability Details CVE-2009-1604
Unspecified vulnerability in LimeSurvey before 1.82 allows remote attackers to execute commands and obtain sensitive data via unknown attack vectors related to /admin/remotecontrol/.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/34946
- http://www.limesurvey.org/content/view/169/1/lang%2Cen/
- http://www.securityfocus.com/bid/34785
- http://www.vupen.com/english/advisories/2009/1219
- http://secunia.com/advisories/34946
- http://www.limesurvey.org/content/view/169/1/lang%2Cen/
- http://www.securityfocus.com/bid/34785
- http://www.vupen.com/english/advisories/2009/1219
Products affected by CVE-2009-1604
-
cpe:2.3:a:limesurvey:limesurvey:1.80
-
cpe:2.3:a:limesurvey:limesurvey:1.80+
-
cpe:2.3:a:limesurvey:limesurvey:1.81
-
cpe:2.3:a:limesurvey:limesurvey:1.81+