Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:31 a.m.6 views

CVE-2019-16173

LimeSurvey before v3.17.14 allows reflected XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. This occurs in application/core/SurveyCommonAction.php,...

5.4CVSS5.9AI score0.03674EPSS
Exploits6References1
0day.today
0day.today
added 2019/09/16 12:0 a.m.105 views

LimeSurvey 3.17.13 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications ======================================================================= title: Stored and reflected XSS vulnerabilities product: LimeSurvey vulnerable version: 3.17.14 CVE number: CVE-2019-16172, CVE-2019-16173 impact: medium homepage:...

3.5CVSS0.2AI score0.04611EPSS
Exploits8
OpenVAS
OpenVAS
added 2019/09/16 12:0 a.m.50 views

LimeSurvey < 3.17.14 Multiple Vulnerabilities

LimeSurvey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.5AI score0.04611EPSS
Exploits8References1
0day.today
0day.today
added 2019/09/13 12:0 a.m.77 views

LimeSurvey 3.17.13 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications ======================================================================= title: Stored and reflected XSS vulnerabilities product: LimeSurvey vulnerable version: 3.17.14 CVE number: CVE-2019-16172, CVE-2019-16173 impact: medium homepage:...

3.5CVSS0.2AI score0.04611EPSS
Exploits8
Circl
Circl
added 2019/09/13 12:0 a.m.23 views

CVE-2019-16173

creationtimestamp| type| source ---|---|--- 2019-09-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/47386...

5.4CVSS6.8AI score0.03674EPSS
Exploits6References1
exploitpack
exploitpack
added 2019/09/13 12:0 a.m.102 views

LimeSurvey 3.17.13 - Cross-Site Scripting

LimeSurvey 3.17.13 - Cross-Site Scripting SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Stored and reflected XSS vulnerabilities product: LimeSurvey vulnerable version: 3.17.14 CVE number: CVE-2019-16172,...

3.5CVSS0.2AI score0.04611EPSS
Exploits8
Exploit DB
Exploit DB
added 2019/09/13 12:0 a.m.298 views

LimeSurvey 3.17.13 - Cross-Site Scripting

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Stored and reflected XSS vulnerabilities product: LimeSurvey vulnerable version: 3.17.14 CVE number: CVE-2019-16172, CVE-2019-16173 impact: medium homepage:...

5.4CVSS6.2AI score0.04611EPSS
Exploits8
CVE
CVE
added 2019/09/09 6:23 p.m.120 views

CVE-2019-16173

LimeSurvey before v3.17.14 is affected by a reflected XSS in application/core/Survey_Common_Action.php that can escalate from a low-privilege account to higher privileges (e.g., SuperAdmin). The issue affects LimeSurvey 3.17.13 and older; fix is in 3.17.14 (build 190902). If exploiting, an attack...

5.4CVSS5.4AI score0.03674EPSS
Exploits6References5Affected Software1
Rows per page
Query Builder