Description
LimeSurvey before 4.1.12+200324 has stored XSS in application/views/admin/surveysgroups/surveySettings.php and application/models/SurveysGroups.php (aka survey groups).
Remediation
References
Related Vulnerabilities
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6628)
MySQL CVE-2023-21876 Vulnerability (CVE-2023-21876)
MySQL CVE-2019-2991 Vulnerability (CVE-2019-2991)
WordPress Plugin WordPress Calls to Action Multiple Vulnerabilities (2.3.7)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-3738)