Reflected XSS Vulnerability in LimeSurvey by LimeSurvey Development Team

CVE-2020-16192

What is CVE-2020-16192?

A reflected XSS vulnerability exists in LimeSurvey 4.3.2, allowing attackers to inject malicious scripts via unvalidated user input in application/controllers/LSBaseController.php. This oversight in parameter validation could enable unauthorized actions or data exposure when users interact with affected functionalities.

References