Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
LimeSurvey Other Vulnerability - CVE-2014-5018 - Vulnerability Database
LimeSurvey

LimeSurvey Other Vulnerability - CVE-2014-5018

Medium
Reference: CVE-2014-5018
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-5018
Title: LimeSurvey Other Vulnerability
Overview:

Incomplete blacklist vulnerability in the autoEscape function in common_helper.php in LimeSurvey 2.05 Build 140618 allows remote attackers to conduct cross-site scripting (XSS) attacks via the GBK charset in the loadname parameter to index.php related to the survey resume.