Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 10:31 a.m.5 views

CVE-2024-42901

A CSV injection vulnerability in Lime Survey v6.5.12 allows attackers to execute arbitrary code via uploading a crafted CSV file...

4.8CVSS8AI score0.00161EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:5 p.m.4 views

CVE-2021-24835

The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible WordPress plugin before 6.5.12, when used in combination with another WCFM - WooCommerce Multivendor plugin such as WCFM - WooCommerce Multivendor Marketplace, does not escape the withdrawalvendor...

8.8CVSS7.6AI score0.00532EPSS
Exploits2References1
OpenVAS
OpenVASadded 2024/12/02 12:0 a.m.11 views

LimeSurvey < 6.5.12 XSS Vulnerability

LimeSurvey is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS6.3AI score0.01144EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2024/10/07 6:31 p.m.16 views

LimeSurvey Cross Site Scripting vulnerability

Cross Site Scripting vulnerability in LimeSurvey before 6.5.12+240611 allows a remote attacker to execute arbitrary code via a crafted script to the title and comment fields...

6.1CVSS7.2AI score0.01144EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2024/10/07 12:0 a.m.2 views

PT-2024-22530 · Unknown · Limesurvey

Name of the Vulnerable Software and Affected Versions: LimeSurvey versions prior to 6.5.12+240611 Description: A Cross Site Scripting vulnerability allows a remote attacker to execute arbitrary code via a crafted script to the title and comment fields. This issue enables the execution of arbitrar...

6.1CVSS7.8AI score0.01144EPSS
Exploits0References13
CNNVD
CNNVDadded 2024/10/07 12:0 a.m.1 views

LimeSurvey 安全漏洞

LimeSurvey PHPSurveyor is an open source online survey program from the LimeSurvey team, which supports survey program development, survey distribution, and data collection. A security vulnerability exists in LimeSurvey prior to 6.5.12+240611 that stems from the presence of a cross-site scripting...

6.1CVSS6.5AI score0.01144EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/09/03 12:0 a.m.2 views

PT-2024-30195 · Unknown · Limesurvey

Name of the Vulnerable Software and Affected Versions: Lime Survey version 6.5.12 Description: A CSV injection vulnerability in Lime Survey allows attackers to execute arbitrary code via uploading a crafted CSV file. This issue enables attackers to upload specially crafted CSV files, which can le...

4.8CVSS7.3AI score0.00161EPSS
Exploits1References9
Patchstack
Patchstackadded 2021/10/11 12:0 a.m.13 views

WordPress WCFM – Frontend Manager for WooCommerce plugin <= 6.5.11 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability discovered by JrXnm in WordPress WCFM – Frontend Manager for WooCommerce plugin versions = 6.5.11. Solution Update the WordPress WCFM – Frontend Manager for WooCommerce plugin to the latest available version at least 6.5.12...

3.2AI score0.00532EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder