Published: 14/09/2018 Updated: 26/04/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 756

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

An issue exists in TCPDF prior to 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tecnick tcpdf
limesurvey limesurvey

Debian Bug report logs - #908866 tcpdf: CVE-2018-17057 Package: src:tcpdf; Maintainer for src:tcpdf is Debian QA Group <packages@qadebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 15 Sep 2018 09:45:02 UTC Severity: grave Tags: fixed-upstream, security, upstream Found in version tcpdf/6 ...

#!/usr/bin/python # Description: LimeSurvey < 316 use a old version of "TCPDF" library, this version is vulnerable to a Serialization Attack via the "phar://" wrapper # Date: 29/03/2019 # Exploit Title: Remote Code Execution in LimeSurvey < 316 via Serialization Attack in TCPDF # Exploit Author: @q3rv0 # Google Dork: # Version: < 316 ...

LimeSurvey versions prior to 316 suffer from a deserialization remote code execution vulnerability ...

TCPDF versions 6219 and below suffer from a deserialization vulnerability that can allow for remote code execution ...

Goal of this repo is to convert exploit-db python2 scripts to python3

py2to3 led | 10th March, 2021 The purpose of this repo is to convert python2 exploits and scripts to python as the support for python2 has dropped Table of contents CVE-2020-25213 CVE-2018-17057 CVE-2020-25213 The File Manager (wp-file-manager) plugin before 69 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe exa

Chaos Communication Camp 2019 Web PDFCreator 题目详情 A pdf conversion service What could go wrong? 考点 TCPDF CVE-2018-17057 反序列化启动 docker-compose up -d open 127001:4539/ Writeup teamrocketistgithubio/2019/08/25/Web-Chaos-Communication-Camp-2019-CTF-pdfcreator/ 相关说明 flag保存在file

CWE-502 https://github.com/tecnickcom/TCPDF/commit/1861e33fe05f653b67d070f7c106463e7a5c26ed http://seclists.org/fulldisclosure/2019/Mar/36 http://packetstormsecurity.com/files/152200/TCPDF-6.2.19-Deserialization-Remote-Code-Execution.html https://github.com/LimeSurvey/LimeSurvey/commit/1cdd78d27697b3150bb44aaa7af1a81062a591a5 https://www.exploit-db.com/exploits/46634/http://packetstormsecurity.com/files/152360/LimeSurvey-Deserialization-Remote-Code-Execution.html https://contao.org/en/news/security-vulnerability-cve-2018-17057.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908866 https://nvd.nist.gov https://github.com/electronforce/py2to3 https://www.exploit-db.com/exploits/46634

CVE-2018-17057

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect