SQL injection vulnerability in Limesurvey (a.k.a PHPSurveyor) prior to 1.91+ Build 120224 and previous versions allows remote malicious users to execute arbitrary SQL commands via the fieldnames parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
limesurvey limesurvey 1.81 |
||
limesurvey limesurvey 1.80 |
||
limesurvey limesurvey 1.5.2 |
||
limesurvey limesurvey |
||
limesurvey limesurvey 1.70 |
||
limesurvey limesurvey 1.49 |
||
limesurvey limesurvey 1.49_rc2 |
||
limesurvey limesurvey 1.80\\+ |
||
limesurvey limesurvey 1.81\\+ |
||
limesurvey limesurvey 1.52 |