CVE-2025-70797 | LimeSurvey 6.15.20 Box[title]/box[url] cross site scripting

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability was found in LimeSurvey 6.15.20 and classified as problematic. This impacts an unknown function. The manipulation of the argument Box[title]/box[url] results in cross site scripting.

This vulnerability is known as CVE-2025-70797. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-70797 | LimeSurvey 6.15.20 Box[title]/box[url] cross site scripting

Post correlati

CVE-2025-5239 | Domain for Sale Plugin up to 3.0.10 on WordPress class_name cross site scripting

CVE-2023-37020 | Open5GS MME up to 2.6.4 S1AP Packet MME_UE_S1AP_ID denial of service

CVE-2023-42959 | Apple macOS up to 13.x race condition

CVE-2024-23644 | Trillium trillium-client/trillium-http HeaderValue response splitting