CVE-2019-16177

HIGH

Limesurvey <3.17.14 - Info Disclosure

Title source: llm

In Limesurvey before 3.17.14, the entire database is exposed through browser caching.

Core 2

Core References

Release Notes, Vendor Advisory x_refsource_misc

Patch, Release Notes, Third Party Advisory x_refsource_misc

CVSS v3 7.5

EPSS 0.0032

EPSS Percentile 55.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-200

Status published

Products (1)

limesurvey/limesurvey < 3.17.14

Published Sep 09, 2019

Tracked Since Feb 18, 2026