CVE-2011-5256

Name of the Vulnerable Software and Affected Versions LimeSurvey versions prior to 1.91+ Build 11379-20111116

Description A cross-site scripting (XSS) issue exists in the tooltips when viewing survey results, allowing remote attackers to inject arbitrary web script or HTML via unknown parameters.

Recommendations For versions prior to 1.91+ Build 11379-20111116, update to version 1.91+ Build 11379-20111116 or later to resolve the issue.