CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Limesurvey: >> Limesurvey >> 6.15.20 Security Vulnerabilities

CVE-2025-70797

Cross Site Scripting vulnerability in Limesurvey v.6.15.20+251021 allows a remote attacker to execute arbitrary code via the Box[title] and box[url] parameters.

CVSS Score

6.1

EPSS Score

0.001

Published

2026-04-09

CVE-2012-4927

SQL injection vulnerability in Limesurvey (a.k.a PHPSurveyor) before 1.91+ Build 120224 and earlier allows remote attackers to execute arbitrary SQL commands via the fieldnames parameter to index.php.

CVSS Score

7.5

EPSS Score

0.034

Published

2012-09-15

Page 1

Vulnerabilities

Vulnerable Software

Limesurvey: >> Limesurvey >> 6.15.20 Security Vulnerabilities

Products

Pricing

Contact Us