CVE-2009-1604

Unspecified vulnerability in LimeSurvey before 1.82 allows remote attackers to execute commands and obtain sensitive data via unknown attack vectors related to /admin/remotecontrol/.

Published: May 11, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-1604
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
limesurvey / limesurvey	1.80+	1.80+.x
limesurvey / limesurvey	1.81+	1.81+.x
limesurvey / limesurvey	1.81	1.81.x
limesurvey / limesurvey	1.80-rc4	1.80-rc4.x
limesurvey / limesurvey	1.80	1.80.x

http://secunia.com/advisories/34946
http://www.limesurvey.org/content/view/169/1/lang,en/
http://www.limesurvey.org/content/view/169/1/lang%2Cen/
http://www.securityfocus.com/bid/34785
http://www.vupen.com/english/advisories/2009/1219

Vulnerability Database

CVE-2009-1604

Deep Security Visibility Without the Complexity