Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-24506

Published: 03/04/2024 Updated: 03/04/2024

Vulnerability Summary

Cross Site Scripting (XSS) vulnerability in Lime Survey Community Edition Version v.5.3.32+220817, allows remote malicious users to execute arbitrary code via the Administrator email address parameter in the General Setting function.

Exploits

Exploit DB: LimeSurvey Community 5.3.32 Cross Site Scripting
LimeSurvey Community version 5332 suffers from a persistent cross site scripting vulnerability ...

References

https://bugs.limesurvey.org/bug_relationship_graph.php?bug_id=19364&graph=relationhttps://www.exploit-db.com/exploits/51926https://nvd.nist.govhttps://packetstormsecurity.com/files/177765/LimeSurvey-Community-5.3.32-Cross-Site-Scripting.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook