CVE-2026-50636 - LimeSurvey RemoteControl invite_participants/remind_participants SQL Injection
CVE ID :CVE-2026-50636 Published : June 9, 2026, 6:17 p.m. | 58 minutes ago Description :The RemoteControl API methods invite_participants and remind_participants pass a caller-supplied token-ID array into TokenDynamic::findUninvited(), which concatenates the values directly into a tid IN...