CVE-2018-17057

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
7.5
HIGH
Affected
2
PROJECTS

Description

An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.

LimeSurvey/LimeSurvey
LimeSurvey/LimeSurvey
🔥 LimeSurvey – A powerful, open-source survey platform. A free alternative to SurveyMonkey, Typeform, Qualtrics, and Google Forms, making it simple to create online surveys and forms with unmatched flexibility.
GitHubGitHub
3.62K
tecnickcom/TCPDF
tecnickcom/TCPDF
Deprecated: PHP PDF library, superseded by tc-lib-pdf (https://github.com/tecnickcom/tc-lib-pdf)
GitHubGitHub
4.54K