Unrated severityOSV Advisory· Published Jan 15, 2019· Updated Aug 5, 2024
CVE-2017-18358
CVE-2017-18358
Description
LimeSurvey before 2.72.4 has Stored XSS by using the Continue Later (aka Resume later) feature to enter an email address, which is mishandled in the admin panel.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.45a, 1.45a_2007-02-24, 1.50_2007-08-06, …+ 1 more
- (no CPE)range: 1.45a, 1.45a_2007-02-24, 1.50_2007-08-06, …
- (no CPE)range: <2.72.4
Patches
Vulnerability mechanics
References
2- blog.ripstech.com/2018/limesurvey-persistent-xss-to-code-execution/mitrex_refsource_MISC
- github.com/LimeSurvey/LimeSurvey/commit/700b20e2ae918550bfbf283f433f07622480978bmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.