Description Cross Site Scripting (XSS) vulneraiblity in LimeSurvey 4.2.5 on textbox via the Notifications & data feature. Remediation References CVE-2020-23710 Related Vulnerabilities Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153) WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.7) WordPress Other Vulnerability (CVE-2007-0106) WordPress Plugin FireStats Cross-Site Scripting (1.6.4) Oracle JRE CVE-2013-0432 Vulnerability (CVE-2013-0432) Severity Medium Classification CVE-2020-23710 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities