CVE-2020-25799

EPSS 0.26% · P50 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-25799

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

LimeSurvey 3.21.1 is affected by cross-site scripting (XSS) in the Quota component of the Survey page. When the survey quota being viewed, e.g. by an administrative user, the JavaScript code will be executed in the browser.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

LimeSurvey 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

LimeSurvey（前称PHPSurveyor）是LimeSurvey（Limesurvey）团队的一套开源的在线问卷调查程序，它支持调查程序开发、调查问卷发布以及数据收集等功能。 LimeSurvey 3.21.1 版本存在安全漏洞，该漏洞源于当调查配额被查看时，比如被管理用户查看时，JavaScript代码将在浏览器中执行。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-25799

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-25799

请登录查看更多情报信息。

https://bugs.limesurvey.org/view.php?id=15681x_refsource_MISC
https://github.com/LimeSurvey/LimeSurvey/commit/a5f317817da4577d9ff457fea9c96482b3d1df23x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-25799

Same Patch Batch · n/a · 2020-12-31 · 118 CVEs total

CVE-2020-35871		Rust 竞争条件问题漏洞
CVE-2019-25010		Rust 安全漏洞
CVE-2020-35858		Rust 资源管理错误漏洞
CVE-2020-35859		Rust lucet-runtime-internals crate 安全漏洞
CVE-2020-35860		Rust 代码问题漏洞
CVE-2020-35861		Rust 缓冲区错误漏洞
CVE-2020-35862		Rust 资源管理错误漏洞
CVE-2020-35863		Rust 代码注入漏洞
CVE-2020-35864		Rust flatbuffers crate 安全漏洞
CVE-2020-35865		Rust 安全漏洞
CVE-2020-35866		Rust 安全漏洞
CVE-2020-35867		Rust 安全漏洞
CVE-2020-35868		Rust 安全漏洞
CVE-2020-35869		Rust 格式化字符串错误漏洞
CVE-2020-35870		Rust rusqlite crate 资源管理错误漏洞
CVE-2020-35882		Rust rocket crate 竞争条件问题漏洞
CVE-2020-35879		Rust rulinalg crate 安全漏洞
CVE-2020-35880		Rust 安全漏洞
CVE-2020-35881		Rust traitobject crate 缓冲区错误漏洞
CVE-2020-35884		Rust tiny_http crate 环境问题漏洞

Showing top 20 of 118 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-25799

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-25799

I. Basic Information for CVE-2020-25799

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-25799

III. Intelligence Information for CVE-2020-25799

Same Patch Batch · n/a · 2020-12-31 · 118 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-25799

Leave a comment