A vulnerability, which was classified as problematic, has been found in LimeSurvey up to 3.27.18 (Survey Software). This issue affects an unknown code block of the file assets/scripts/modaldialog.js of the component File Upload Question Handler. Applying the patch d56619a50cfd191bbffd0adb660638a5e438070d is able to eliminate this problem. The bugfix is ready for download at github.com.
LimeSurvey up to 3.27.18 File Upload Question modaldialog.js cross site scripting
- Virtual Patching
- October 9, 2021
- 4:06 pm
Contact us to get started
CVE-2024-50282 : LINUX KERNEL UP TO 6.11.7 AMD GPU AMDGPU_DEBUGFS_GPRWAVE_READ BUFFER OVERFLOW
Description In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() Avoid a
CVE-2024-50919 : JPRESS 5.1.1 ON WINDOWS JSP FILE UNRESTRICTED UPLOAD
Description Jpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such
CVE-2024-47873 : PHPOFFICE PHPSPREADSHEET UP TO 1.29.3/2.1.2/2.3.1/3.3.X SCAN/FINDCHARSET XML EXTERNAL ENTITY REFERENCE
Description PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. The XmlScanner class has a scan method which