Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

LimeSurvey CVE-2019-16180 Vulnerability (CVE-2019-16180)

Description

Limesurvey before 3.17.14 allows remote attackers to bruteforce the login form and enumerate usernames when the LDAP authentication method is used.

Remediation

References

Related Vulnerabilities

Moodle Incorrect Authorization Vulnerability (CVE-2025-3647)

Moodle Improper Access Control Vulnerability (CVE-2016-8642)

Liferay Portal CVE-2021-38266 Vulnerability (CVE-2021-38266)

OpenSSL Out-of-bounds Read Vulnerability (CVE-2021-3712)

Python Uncontrolled Resource Consumption Vulnerability (CVE-2019-9674)

Severity

Medium

Classification

CVE-2019-16180 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities