View Issue Details

Jump to NotesJump to History
This issue affects 2 person(s).
 260
IDProjectCategoryView StatusDate SubmittedLast Update
20435Bug reportsSecuritypublic2026-02-23 18:182026-02-23 19:12
Reporterjarrod.c Assigned To 
PrioritynoneSeverityminor 
Status newResolutionopen 
Product Version6.6.x 
Summary20435: Web Cache Deception
Description

Vulnerability

Survey is affected by the following vulnerability: https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/web-cache-deception

Cause

Rewrite rule on line 9: https://github.com/LimeSurvey/LimeSurvey/blob/571bab902ed2a7f0de0e2762a14c57341bc94bb3/.htaccess#L9

Steps To Reproduce

Steps to reproduce

(Replace this text with detailed step-by-step instructions on how to reproduce the issue)

Expected result

(Write here what you expected to happen)

Actual result

(Write here what happened instead)

TagsNo tags attached.
Bug heat260
Complete LimeSurvey version number (& build)6.16.7+260205
I will donate to the project if issue is resolvedNo
Browser
Database type & versionIrrelevant
Server OS (if known)
Webserver software & version (if known)
PHP VersionIrrelevant

Users monitoring this issue

There are no users monitoring this issue.

Activities

tibor.pacalat

tibor.pacalat

2026-02-23 18:46

administrator   ~84273

@jarrod.c Please provide a step by step "how to reproduce".
jarrod.c

jarrod.c

2026-02-23 19:12

reporter   ~84276

  1. Install LimeSurvey
  2. Attempt to access url/?.css or url/?.zip

Expected result: 404 or redirect to the root of the directory or redirect to index.php directly

Actual result: responds with 200 and blindly serves index.php

Issue History

Date Modified Username Field Change
2026-02-23 18:18 jarrod.c New Issue
2026-02-23 18:46 tibor.pacalat Note Added: 84273
2026-02-23 18:46 tibor.pacalat Bug heat 250 => 252
2026-02-23 19:12 jarrod.c Note Added: 84276
2026-02-23 19:12 jarrod.c Bug heat 252 => 254
2026-02-23 19:46 guest Bug heat 254 => 260