{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T22:28:02.644","vulnerabilities":[{"cve":{"id":"CVE-2009-1604","sourceIdentifier":"cve@mitre.org","published":"2009-05-11T20:00:00.217","lastModified":"2026-06-16T23:07:37.393","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in LimeSurvey before 1.82 allows remote attackers to execute commands and obtain sensitive data via unknown attack vectors related to /admin/remotecontrol/."},{"lang":"es","value":"Vulnerabilidad no especificada en LimeSurvey en sus versiones anteriores a la v1.82 que permite a usuarios remotos ejecutar comandos y obtener información confidencial a través de un vector de ataque desconocido relacionado con /admin/remotecontrol/."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:limesurvey:limesurvey:1.80:*:*:*:*:*:*:*","matchCriteriaId":"8FED3FCC-EF18-4C93-B0ED-71D49B2B3EAD"},{"vulnerable":true,"criteria":"cpe:2.3:a:limesurvey:limesurvey:1.80:rc4:*:*:*:*:*:*","matchCriteriaId":"F17F04CC-4044-4A48-880B-9A946F3BB283"},{"vulnerable":true,"criteria":"cpe:2.3:a:limesurvey:limesurvey:1.80\\+:*:*:*:*:*:*:*","matchCriteriaId":"97967070-D35E-4F10-A86A-12F9CF284ED3"},{"vulnerable":true,"criteria":"cpe:2.3:a:limesurvey:limesurvey:1.81:*:*:*:*:*:*:*","matchCriteriaId":"8DA98BBD-2A40-42EA-A26D-05C2F7FFCAB8"},{"vulnerable":true,"criteria":"cpe:2.3:a:limesurvey:limesurvey:1.81\\+:*:*:*:*:*:*:*","matchCriteriaId":"AC4D779A-A8AE-4170-8FAF-B443AD431D7F"}]}]}],"references":[{"url":"http://secunia.com/advisories/34946","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.limesurvey.org/content/view/169/1/lang%2Cen/","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/34785","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2009/1219","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://secunia.com/advisories/34946","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.limesurvey.org/content/view/169/1/lang%2Cen/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/34785","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/1219","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}