Description Cross Site Scripting (XSS) vulneraiblity in LimeSurvey 4.2.5 on textbox via the Notifications & data feature. Remediation References CVE-2020-23710 Related Vulnerabilities Atlassian Confluence Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-22526) MySQL CVE-2015-2620 Vulnerability (CVE-2015-2620) WordPress Plugin Ticketrilla:Client PHP Object Injection (1.0.1) WordPress Plugin Lazy content Slider Cross-Site Request Forgery (3.4) Joomla CVE-2012-5827 Vulnerability (CVE-2012-5827) Severity Medium Classification CVE-2020-23710 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities