LimeSurvey versions 3.17.13 and below suffer from reflective and persistent cross site scripting vulnerabilities.
>> ARCHIVE: 2019-09
LimeSurvey 3.17.13 – Cross-Site Scripting
phpMyAdmin 4.9.0.1 – Cross-Site Request Forgery
Dolibarr ERP-CRM 10.0.1 – ‘User-Agent’ Cross-Site Scripting
Folder Lock 7.7.9 – Denial of Service
http://smss.ksn1.go.th/susu.html notified by Mr./Key14
http://amss.ksn1.go.th/susu.html notified by Mr./Key14
WordPress Photo Gallery plugin version 1.5.34 suffers from a remote SQL injection vulnerability.
WordPress Photo Gallery plugin version 1.5.34 suffers from multiple cross site scripting vulnerabilities.
WordPress Checklist plugin version 1.1.5 suffers from a cross site scripting vulnerability.