Sakura-501/LimeSurvey-5.4.15-PluginUploadtoRCE

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

In LimeSurvey5.4.15, it has a vulnerability in index.php/admin/pluginmanager which can lead to RCE

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-48008 ↗	Jan 27, 2023Friday, 27 January 2023, 18:15	9.8 CRITICAL	—
An arbitrary file upload vulnerability in the plugin manager of LimeSurvey v5.4.15 allows attackers to execute arbitrary code via a crafted PHP file.