VYPR
Unrated severityNVD Advisory· Published Sep 15, 2012· Updated Jun 16, 2026

CVE-2012-4927

CVE-2012-4927

Description

SQL injection vulnerability in Limesurvey (a.k.a PHPSurveyor) before 1.91+ Build 120224 and earlier allows remote attackers to execute arbitrary SQL commands via the fieldnames parameter to index.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

13
  • cpe:2.3:a:limesurvey:limesurvey:*:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:limesurvey:limesurvey:*:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.49:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.49:rc2:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.49_rc2:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.52:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.70:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.80:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.80\+:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.80:rc4:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.81:*:*:*:*:*:*:*
    • cpe:2.3:a:limesurvey:limesurvey:1.81\+:*:*:*:*:*:*:*
    • (no CPE)range: <1.91+ Build 120224

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.