Lucene search
China National Vulnerability DatabaseCNVD-2022-76229HistoryMay 13, 2022 - 12:00 a.m.
Survey Sparrow Enterprise Survey Software Cross-Site Scripting Vulnerability
2022-05-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
40.8%
Survey Sparrow Enterprise Survey Software is an enterprise survey software from Survey Sparrow, Inc. A cross-site scripting vulnerability exists in Survey Sparrow Enterprise Survey Software version 2022, which stems from a lack of data validation filtering in the Signup parameter is missing a data validation filter for user-supplied data and output. An attacker could use this vulnerability to execute JavaScript code on the client side.
Related
cve
cve
CVE-2022-29727
2022-05-11 13:15:08
prion
prion
Cross site scripting
2022-05-11 13:15:00
packetstorm
packetstorm
Survey Sparrow Enterprise Survey Software 2022 Cross Site Scripting
2022-05-17 00:00:00
zdt
zdt
cvelist
cvelist
CVE-2022-29727
2022-05-11 12:57:58
nvd
nvd
CVE-2022-29727
2022-05-11 13:15:08
exploitdb
exploitdb