Description In Limesurvey before 3.17.14, admin users can mark other users' notifications as read. Remediation References CVE-2019-16181 Related Vulnerabilities WordPress Plugin Powerplay Gallery Multiple Vulnerabilities (3.3) WordPress Plugin TAKETIN To WP Membership PHP Object Injection (1.2.7) WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.9) PHP Deserialization of Untrusted Data Vulnerability (CVE-2017-11143) OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2003-0545) Severity Low Classification CVE-2019-16181 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Tags Missing Update Known Vulnerabilities