Cross-site request forgery (CSRF) vulnerability in LimeSurvey (formerly PHPSurveyor) prior to 1.71 allows remote malicious users to change arbitrary quotas as administrators via a "modify quota" action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
limesurvey limesurvey |
||
limesurvey limesurvey 1.52 |
||
limesurvey limesurvey 1.49 |