LimeSurvey Deserialization of Untrusted Data Vulnerability - CVE-2018-17057 - Vulnerability Database

LimeSurvey Deserialization of Untrusted Data Vulnerability - CVE-2018-17057

Critical
Reference: CVE-2018-17057
Title: LimeSurvey Deserialization of Untrusted Data Vulnerability
Overview:

An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.