LimeSurvey 3.17.14 build 190902 released!

LimeSurvey - the free & open source survey software tool!

Last changes:

-Fixed issue: setting "Show header in answers export PDFs" not taken in account
-Fixed issue: [security]XSS in admin box buttons - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]XML breakout possible on export - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]X-Frame-Options SAMEORIGIN not set by default - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]User unaware that SSL encryption should be enforced
-Fixed issue: [security]Path revelation
-Fixed issue: [security]LDAP login non-generic login message - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]LDAP login non-generic login message - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]Equation signs are not masked by default on data export
-Fixed issue: [security]Equation signs are not masked by default on data export
-Fixed issue: [security]CSRF cookie missing HTTP only parameter- kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]Admin user without permissions can still see plugins page - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]Admin user with settings permissions can can run integrity check - kindly reported by Pavol Michalec & Frederik Koľbík
-Fixed issue: [security]Admin user with limited permissions can view/update/delete reserved menu entries
-Fixed issue: [security]Admin user can mark other user notification as read
-Fixed issue: [security] Database backup uses browser cache
-Fixed issue: [security] Browser cache used for exports
-Fixed issue: [security] #15204: Stored XSS vulnerabilities - Thanks to J. Greil from the SEC Consult Vulnerability Lab
-Fixed issue: [security] #15204: Reflected XSS vulnerabilities - thanks to J. Greil from the SEC Consult Vulnerability Lab
-Fixed issue: Survey upload self-reflecting XSS
-Fixed issue: Sidebar not working on IE11
-Fixed issue: Memory issues if too many responses exist for the same token in a non-anonymous survey
-Fixed issue: Memory issues if too many responses exist for the same token in a non-anonymous survey
-Fixed issue: LsTutorial only working in debug mode
-Fixed issue: Language not updated on import and overwrite in CPDB
-Fixed issue: JS error in firstStartTour onShow code
-Fixed issue: After survey activation the ExpressionManager cache was not updated
-Fixed issue #15212: Survey navigation shows message "Please use the survey navigation buttons...[]" instead of navigating
-Fixed issue #15209: 500 error when try to save long administrator name
-Fixed issue #15208: MSSQL error on 2nd page of theme
-Fixed issue #15199: MSSQL : date/time question are not reloaded properly
-Fixed issue #15197: Submitting empty menu entry crashes application
-Fixed issue #15194: Unable to remove page title from PDF generated at "print answers" screen
-Fixed issue #15192: entering html code inside the answeroptions for List type questions will break/alter the html for editing answers
-Fixed issue #15188: Access Label sets list
-Fixed issue #14863: Extending core theme using the same core theme name
-Fixed issue #10168: Commit test! Ignore
-New translation: Filipino (Carsten Schmitz) Download the latest version

Jetzt loslegen!

Melden Sie sich jetzt an, und erstellen Sie in wenigen Minuten Ihre erste Umfrage.

Account einrichten

Abonnieren Sie unseren Newsletter

Abonnieren Sie unseren Newsletter für alle Neuigkeiten rund um LimeSurvey
captcha