Description
An XML injection vulnerability was found in Limesurvey before 3.17.14 that allows remote attackers to import specially crafted XML files and execute code or compromise data integrity.
Remediation
References
Related Vulnerabilities
PHP Out-of-bounds Read Vulnerability (CVE-2020-7061)
Oracle Database Server CVE-2011-0830 Vulnerability (CVE-2011-0830)
phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2023-4006)
Beego Framework Improper Certificate Validation Vulnerability (CVE-2024-40464)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-6816)