CVE-2020-11456

MEDIUM

LimeSurvey < 4.1.12+200324 - Stored Cross-Site Scripting in Survey Groups

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-11456. PoCs published by Matthew Aberegg.

AI-analyzed exploit summary This exploit demonstrates a stored XSS vulnerability in LimeSurvey 4.1.11 via the 'Survey Groups' functionality. The payload injects malicious JavaScript into the 'title' parameter, which executes when viewed in the administration panel.

Description

LimeSurvey before 4.1.12+200324 has stored XSS in application/views/admin/surveysgroups/surveySettings.php and application/models/SurveysGroups.php (aka survey groups).

Exploits (1)

exploitdb WORKING POC
by Matthew Aberegg · textwebappsphp
https://www.exploit-db.com/exploits/48289

This exploit demonstrates a stored XSS vulnerability in LimeSurvey 4.1.11 via the 'Survey Groups' functionality. The payload injects malicious JavaScript into the 'title' parameter, which executes when viewed in the administration panel.

Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: LimeSurvey 4.1.11+200316
Auth required
Prerequisites: Valid admin session (YII_CSRF_TOKEN cookie) · Access to the LimeSurvey administration panel
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/157114/LimeSurvey-4.1.11-Cross-Site-Scripting.html
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/48289

Scores

CVSS v3 5.4
EPSS 0.7084
EPSS Percentile 99.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (2)
limesurvey/limesurvey 4.1.12 (2 CPE variants)
limesurvey/limesurvey < 4.1.11
Published Apr 01, 2020
Tracked Since Feb 18, 2026