Description In Limesurvey before 3.17.14, admin users can mark other users' notifications as read. Remediation References CVE-2019-16181 Related Vulnerabilities WordPress Plugin Ajax Search Lite Security Bypass (3.1) Apache HTTP Server Other Vulnerability (CVE-2002-0661) PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-5264) WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-19434) WordPress Plugin s2Member Pro 'Coupon Code' Field HTML Injection (111216) Severity Low Classification CVE-2019-16181 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities