Back to limesurvey.org

Welcome to the LimeSurvey Community Forum

Ask the community, share ideas, and connect with other LimeSurvey users!

Security Issue with ShellCommand.php?

  • ElToro1966
  • ElToro1966's Avatar Topic Author
  • Offline
  • New Member
  • New Member
More
9 years 5 days ago - 9 years 5 days ago #132361 by ElToro1966
Security Issue with ShellCommand.php? was created by ElToro1966
I have a space at a web hotel with one Joomla-installation and one Limesurvey-installation. The security tool "AdminTools" is a part of the Joomla-installation. When scanning for issues with this tool, I get a risk score of 100 on the file limesurvey/framework/cli/commands/ShellCommand.php. A score of 100 in AdminTools usually means that it is compromised somehow. Has anyone experienced similar issues with this file? Thanks.

Limesurvey v.2.06
PHP Version 5.4.45
Last edit: 9 years 5 days ago by c_schmitz.
The topic has been locked.
  • c_schmitz
  • c_schmitz's Avatar
  • Offline
  • LimeSurvey GmbH Employee
  • LimeSurvey GmbH Employee
More
9 years 5 days ago - 9 years 4 days ago #132367 by c_schmitz
Replied by c_schmitz on topic Security Issue with ShellCommand.php?
It is a false positive - the file cannot be executed, it is meant for shell usage only.
You should report this to the makers of that security tool. It is probably meant to only scan Joomla files, I don't know.
Best regards

Carsten Schmitz
LimeSurvey project leader
Last edit: 9 years 4 days ago by c_schmitz.
The following user(s) said Thank You: ElToro1966
The topic has been locked.
  • ElToro1966
  • ElToro1966's Avatar Topic Author
  • Offline
  • New Member
  • New Member
More
9 years 4 days ago #132375 by ElToro1966
Replied by ElToro1966 on topic Security Issue with ShellCommand.php?
Ok. Will do.

Thanks for quick reply.
The topic has been locked.
Moderators: holchtpartner

Lime-years ahead

Online-surveys for every purse and purpose

Pricing & Plans
Get started

Legal

About Us

Open Source