A vulnerability classified as problematic was found in Lime Survey up to 6.5.12. Affected by this vulnerability is an unknown functionality of the component POST Request Handler. The manipulation of the argument YII_CSRF_TOKEN leads to cross-site request forgery.
This vulnerability is known as CVE-2024-39063. The attack can be launched remotely. There is no exploit available.