VYPR
Unrated severityNVD Advisory· Published Feb 12, 2013· Updated Jun 16, 2026

CVE-2011-5256

CVE-2011-5256

Description

Cross-site scripting (XSS) vulnerability in the tooltips in LimeSurvey before 1.91+ Build 11379-20111116, when viewing survey results, allows remote attackers to inject arbitrary web script or HTML via unknown parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16
  • cpe:2.3:a:limesurvey:limesurvey:*:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:limesurvey:limesurvey:*:*:*:*:*:*:*:*range: <=1.91\+
    • cpe:2.3:a:limesurvey:limesurvey:1.01:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.50:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.52:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.53\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.70\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.71\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.72:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.80\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.81\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.82\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.85:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.86:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.87\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.90\+:*:*:*:*:*:*:*
    • (no CPE)range: <1.91+ Build 11379-20111116

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.