CVE-2022-29710
EUVD-2022-3403625.05.2022, 01:15
A cross-site scripting (XSS) vulnerability in uploadConfirm.php of LimeSurvey v5.3.9 and below allows attackers to execute arbitrary web scripts or HTML via a crafted plugin.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| limesurvey | limesurvey | 𝑥 ≤ 5.3.9 |
𝑥
= Vulnerable software versions