All 9 CVE vulnerabilities found in LimeSurvey, with AI-generated Chinese analysis, references, and POCs.
Vendor: n/a
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-36993 | LimeSurvey <= 4.3.10 - 'Survey Menu' Persistent Cross-Site Scripting CWE-79 | 5.4 | Medium | 2026-01-28 |
| CVE-2025-41076 | Multiple vulnerabilities in Limesurvey CWE-209 | 7.5 | - | 2025-11-20 |
| CVE-2025-41075 | Multiple vulnerabilities in Limesurvey CWE-835 | 6.5 | - | 2025-11-20 |
| CVE-2025-41074 | Multiple vulnerabilities in Limesurvey CWE-835 | 6.5 | - | 2025-11-20 |
| CVE-2025-41376 | CRLF Injection in Limesurvey CWE-93 | 8.8 | - | 2025-08-01 |
| CVE-2025-41375 | SQL Injection in Limesurvey CWE-89 | 8.8 | - | 2025-08-01 |
| CVE-2025-34120 | LimeSurvey 2.0+ - 2.06+ Unauthenticated Arbitrary File Download via Serialized Backup Payload CWE-22 | 7.5AI | HighAI | 2025-07-16 |
| CVE-2024-7887 | LimeSurvey File Upload index.php denial of service CWE-404 | 2.7 | Low | 2024-08-17 |
| CVE-2024-6933 | LimeSurvey Survey General Settings updatesurveylocalesettings_generalsettings actionUpdateSurveyLocaleSettingsGeneralSettings sql injection CWE-89 | 6.3 | Medium | 2024-07-21 |
All 9 known CVE vulnerabilities affecting LimeSurvey with full Chinese analysis, references, and POCs where available.