Security Advisory

CVE-2020-25797

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-31 17:06:19

Last updated 2024-08-04 15:40:36

Assigner mitre

State PUBLISHED

Description

LimeSurvey 3.21.1 is affected by cross-site scripting (XSS) in the Add Participants Function (First and last name parameters). When the survey participant being edited, e.g. by an administrative user, the JavaScript code will be executed in the browser.

← Browse all CVEs View on cve.org ↗