Description Cross Site Scripting (XSS) vulneraiblity in LimeSurvey 4.2.5 on textbox via the Notifications & data feature. Remediation References CVE-2020-23710 Related Vulnerabilities WordPress Plugin AutomatorWP-The most flexible and powerful no-code automation for WordPress Cross-Site Request Forgery (2.5.0) WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.44) WordPress Plugin ABASE Multiple Vulnerabilities (2.6) WordPress Plugin Viral Quiz Maker-OnionBuzz SQL Injection (1.2.6) Drupal Data Processing Errors Vulnerability (CVE-2016-3171) Severity Medium Classification CVE-2020-23710 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities