3 matches found
CVE-2020-25797
LimeSurvey 3.21.1 is affected by cross-site scripting XSS in the Add Participants Function First and last name parameters. When the survey participant being edited, e.g. by an administrative user, the JavaScript code will be executed in the browser...
LimeSurvey < 3.21.2 Multiple XSS Vulnerabilities
LimeSurvey is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2020-25797
LimeSurvey 3.21.1 is affected by cross-site scripting (XSS) in the Add Participants Function (First and last name parameters). The vulnerability arises when an administrative user edits a participant, causing injected JavaScript to execute in the browser. Multiple connected sources corroborate th...