Arbitrary File Read Vulnerability in LimeSurvey before 3.14.7

Arbitrary File Read Vulnerability in LimeSurvey before 3.14.7

CVE-2018-16397 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

In LimeSurvey before 3.14.7, an admin user can leverage a "file upload" question to read an arbitrary file,

Learn more about our User Device Pen Test.