CVE-2019-17660
CVE-2019-17660 is an XSS vulnerability in LimeSurvey up to version 3.19.1, located at admin/translate/translateheader_view.php. It is exploitable via the tolang parameter (PATH_INFO), allowing remote attackers to inject arbitrary web script or HTML. Affected: LimeSurvey 3.19.1 and earlier. Impact...