LimeSurvey 6.2.7
18 September 2023
LimeSurvey version 6.2.7 is now available (security release).
Upgrading to LimeSurvey 6.2.7
LimeSurvey 6.2.7 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply LimeSurvey updates as new versions are released, or use Installatron's Clone feature to duplicate an existing LimeSurvey install to test the 6.2.7 upgrade prior to applying it live. Get started managing your LimeSurvey installations with Installatron
What's New in LimeSurvey 6.2.7
Security
- #19037: [security] Reflected XSS in LimeSurvey via user id parameter (#3406) (Gabriel Jenik)
- #18904: [security] Stored XSS with Expression Script in End page (#3402) (Gabriel Jenik)
- #19019: [security] Stored XSS in description of theme (#3359) (Gabriel Jenik)
Bug Fixes and Changes
- #CT-374: ckeditor prevents iframes from working by adding sandbox="" (twilligls)
- #CR-1308: Batch actions dropdown is disabled executing any table action (Mohab E)
- #19072: CDbException with Microsoft SQL Server (#3431) (Denis Chenu)
- #19068: Batch actions dropdown is disabled after first use on User management page (#3421) (Gabriel Jenik)
- #19056: Save button in create dummy participants page actually saves and closes (#3426) (Gabriel Jenik)
- #19052: Statistic navigate button doesn't redirect to responses (#3425) (Mohab E)
- #19041: Action dropdown is blocked after filter or changing rows per page (#3398) (Gabriel Jenik)
- #19039: Action Links Drop Down Menu Not Working In CPM(CPDB) (#3397) (Gabriel Jenik)
- #19033: After performing an action inside attribute table, other actions were not possible (#3424) (Mohab E)
- #19031: Massive action not possible after doing another action in the survey paticipants table (#3437) (Mohab E)
- #19030: Batch actions dropdown is disabled executing any table action (#3419) (Mohab E)
- #19018: Postgres - trying to update from 5.6.31 to master caused an error (#3370) (Gabriel Jenik)
- #18981: Using ngT to translate plurals loads wrong locale folder (#3363) (Gabriel Jenik)
- #18978: User is able to change survey group's code that is by default unchangeable (#3400) (Gabriel Jenik)
- #18602: When surveys are copied without copying attachments, attachment info is copied but not updated (#3430) (Gabriel Jenik)
- #18601: No editor available when defining quota messages. (#3429) (Gabriel Jenik)
- #18593: Float attributes are not supported anymore (#3411) (Gabriel Jenik)
- #18557: Email Template Attachments appear to carry over with copied survey, but do not work (#2861) (Gabriel Jenik)
- #18494: TypeError during demo survey "ls205_em_tailoring" (#3443) (Gabriel Jenik)
- #15310: Display dropdown boxes - Date/Time question type not working correctly if minimum date < 1900 (#3353) (Gabriel Jenik)