LimeSurvey before 2.72.4 has Stored XSS by using the Continue Later (aka Resume later) feature to enter an email address, which is mishandled in the admin panel.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T21:20:50.655Z

Reserved: 2019-01-15T00:00:00

Link: CVE-2017-18358

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-01-15T16:29:00.383

Modified: 2024-11-21T03:19:55.393

Link: CVE-2017-18358

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.