Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13 matches found

NVD
NVDadded 2026/01/28 1:15 p.m.2 views

CVE-2020-36993

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparentid parameters to execute arbitrary JavaScript in administrative contexts...

5.4CVSS0.00025EPSS
Exploits1References4
OSV
OSVadded 2026/01/28 1:15 p.m.2 views

CVE-2020-36993

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparentid parameters to execute arbitrary JavaScript in administrative contexts...

5.4CVSS6AI score
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/01/28 12:29 p.m.2 views

CVE-2020-36993

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparentid parameters to execute arbitrary JavaScript in administrative contexts...

6.4CVSS6AI score0.00025EPSS
Exploits1References4
CVE
CVEadded 2026/01/28 12:29 p.m.7 views

CVE-2020-36993

CVE-2020-36993 affects LimeSurvey 4.3.10, with a stored cross-site scripting vulnerability in the Survey Menu of the admin panel. The issue allows attackers to inject SVG scripts via Surveymenu[title] and Surveymenu[parent_id], enabling execution of arbitrary JavaScript in administrative contexts...

5.4CVSS6AI score0.00025EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2026/01/28 12:29 p.m.25 views

CVE-2020-36993 LimeSurvey <= 4.3.10 - 'Survey Menu' Persistent Cross-Site Scripting

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparentid parameters to execute arbitrary JavaScript in administrative contexts...

5.4CVSS0.00025EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2026/01/28 12:29 p.m.1 views

CVE-2020-36993 LimeSurvey <= 4.3.10 - 'Survey Menu' Persistent Cross-Site Scripting

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparentid parameters to execute arbitrary JavaScript in administrative contexts...

5.4CVSS6AI score0.00025EPSS
Exploits1References4
EUVD
EUVDadded 2026/01/28 12:29 p.m.2 views

EUVD-2020-30901

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparentid parameters to execute arbitrary JavaScript in administrative contexts...

6.4CVSS6AI score0.00025EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2026/01/28 12:0 a.m.4 views

PT-2026-5119

LimeSurvey 4.3.10 contains a stored cross-site scripting vulnerability in the Survey Menu functionality of the administration panel. Attackers can inject malicious SVG scripts through the Surveymenutitle and Surveymenuparent id parameters to execute arbitrary JavaScript in administrative contexts...

6.4CVSS6AI score0.00025EPSS
Exploits1References5
CNNVD
CNNVDadded 2026/01/28 12:0 a.m.2 views

LimeSurvey (PHPSurveyor) Cross-site Scripting Vulnerabilities

LimeSurvey PHPSurveyor is a set of open-source online survey programs developed by the LimeSurvey team. It supports functions such as survey program development, survey questionnaire publishing, and data collection. Version 4.3.10 of LimeSurvey PHPSurveyor has a cross-site scripting vulnerability...

5.4CVSS5.6AI score0.00025EPSS
Exploits1References4
Huntr
Huntradded 2023/06/29 8:52 a.m.9 views

Unauthorized access to Survey menu entries

Description The application is not properly verifying the authorization of users accessing survey menu entries. Proof of Concept 1. Login as a user with limited privilege. In my case the user permission is set as follows and has no access to surveys. 2. Visit...

6.7AI score
Exploits0References1
CNVD
CNVDadded 2020/08/26 12:0 a.m.1 views

LimeSurvey 'Survey Menu' Stored Cross-Site Scripting Vulnerability

LimeSurvey formerly known as PHPSurveyor is a set of open source online questionnaire survey program from the LimeSurvey team, which supports survey program development, questionnaire distribution, and data collection. A stored cross-site scripting vulnerability exists in LimeSurvey 'Survey Menu'...

5.9AI score
Exploits0References1
Exploit DB
Exploit DBadded 2020/08/24 12:0 a.m.447 views

LimeSurvey 4.3.10 - &#039;Survey Menu&#039; Persistent Cross-Site Scripting

Exploit Title: LimeSurvey 4.3.10 - 'Survey Menu' Persistent Cross-Site Scripting Date: 2020-08-23 Exploit Author: Matthew Aberegg Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.3.10+200812 Tested on: Ubuntu 18.04.4 Patch Link:...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2020/08/24 12:0 a.m.509 views

LimeSurvey 4.3.10 Cross Site Scripting

Exploit Title: LimeSurvey 4.3.10 - 'Survey Menu' Persistent Cross-Site Scripting Date: 2020-08-23 Exploit Author: Matthew Aberegg Vendor Homepage: https://www.limesurvey.org Version: LimeSurvey 4.3.10+200812 Tested on: Ubuntu 18.04.4 Patch Link:...

Exploits0
Rows per page
Query Builder