BIT-limesurvey-2022-43279

Import Source

https://github.com/bitnami/vulndb/tree/main/data/limesurvey/BIT-limesurvey-2022-43279.json

JSON Data

https://api.test.osv.dev/v1/vulns/BIT-limesurvey-2022-43279

Aliases

CVE-2022-43279

Published

2024-03-06T10:55:49.184Z

Modified

2024-05-15T07:50:41.654Z

Summary

[none]

Details

LimeSurvey before v5.0.4 was discovered to contain a SQL injection vulnerability via the component /application/views/themeOptions/update.php.

Database specific

{
    "cpes": [
        "cpe:2.3:a:limesurvey:limesurvey:5.4.4:*:*:*:*:*:*:*"
    ],
    "severity": "High"
}

References

Affected packages

Bitnami / limesurvey

Package

Name: limesurvey
Purl: pkg:bitnami/limesurvey

Severity

7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

5.4.4

Last affected

5.4.4