mod_survey 3.0.0 through 3.0.15-pre6 does not check whether a survey exists before creating a subdirectory for it, which allows remote attackers to cause a denial of service (disk consumption and possible crash).
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| mod_survey | mod_survey | 3.0.5 |
| mod_survey | mod_survey | 3.0.12 |
| mod_survey | mod_survey | 3.0.14 |
| mod_survey | mod_survey | 3.0.4 |
| mod_survey | mod_survey | 3.0.2 |
| mod_survey | mod_survey | 3.0.15pre4 |
| mod_survey | mod_survey | 3.0.15pre1 |
| mod_survey | mod_survey | 3.0.14e |
| mod_survey | mod_survey | 3.0.15pre6 |
| mod_survey | mod_survey | 3.0.8 |
| mod_survey | mod_survey | 3.0.9 |
| mod_survey | mod_survey | 3.0.10 |
| mod_survey | mod_survey | 3.0.13 |
| mod_survey | mod_survey | 3.0.14d |
| mod_survey | mod_survey | 3.0.7 |
| mod_survey | mod_survey | 3.0.3 |
| mod_survey | mod_survey | 3.0.1 |
| mod_survey | mod_survey | 3.0.15pre5 |
| mod_survey | mod_survey | 3.0.11 |
| mod_survey | mod_survey | 3.0.15pre2 |
| mod_survey | mod_survey | 3.0.15pre3 |
| mod_survey | mod_survey | 3.0.6 |
| mod_survey | mod_survey | 3.0 |