Cross-site scripting (XSS) vulnerability in the tooltips in LimeSurvey prior to 1.91+ Build 11379-20111116, when viewing survey results, allows remote malicious users to inject arbitrary web script or HTML via unknown parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
limesurvey limesurvey 1.80+ |
||
limesurvey limesurvey 1.72 |
||
limesurvey limesurvey 1.85 |
||
limesurvey limesurvey 1.53+ |
||
limesurvey limesurvey |
||
limesurvey limesurvey 1.52 |
||
limesurvey limesurvey 1.87+ |
||
limesurvey limesurvey 1.86 |
||
limesurvey limesurvey 1.90+ |
||
limesurvey limesurvey 1.81+ |
||
limesurvey limesurvey 1.70+ |
||
limesurvey limesurvey 1.50 |
||
limesurvey limesurvey 1.71+ |
||
limesurvey limesurvey 1.01 |
||
limesurvey limesurvey 1.82+ |