Description
A flaw has been found in LimeSurvey 6.5.14-240624. Affected by this issue is the function actionUpdateSurveyLocaleSettingsGeneralSettings of the file /index.php?r=admin/database/index/updatesurveylocalesettings_generalsettings of the component Survey General Settings Handler. This manipulation of the argument Language causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used. Upgrading to version 6.6.2+240827 can resolve this issue. Patch name: d656d2c7980b7642560977f4780e64533a68e13d. You should upgrade the affected component.
INFO
Published Date :
2024-07-21T00:31:04.336Z
Last Modified :
2025-12-09T14:52:38.866Z
Source :
VulDB
AFFECTED PRODUCTS
The following products are affected by CVE-2024-6933 vulnerability.
| Vendors | Products |
|---|---|
| Limesurvey |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2024-6933.
