Rifky's picture

Hello Turnkey Team,

We are currently having an Turnkey product which is Limesurvey from AWS Marketplace with below link:

AWS Marketplace: LimeSurvey - Survey application powered by TurnKey GNU/Linux (HVM) (amazon.com)


After several months running and our Security team did some assessment, they found out that this application is having several security risk :

- [Medium] Stored Cross-Site Scripting in the admin panel

- [Medium] Outdated version of components (some with known vulnerabilities)

- [Medium] Lack of Security Headers

- [Low] Lack of Cookie attributes

*) we could share detail if you need the detail reports


We want to do remediations for above risks, could you help to provide support to us?


thank you.



Add new comment