A deserialization vulnerability in LimeSurvey before v6.15.0+250623 allows a remote attacker to execute arbitrary code on the server.
Published March 10, 2026.
Limesurvey Limesurvey
