SurveyKing v0.2.0 was discovered to retain users' session cookies after logout, allowing attackers to login to the system and access data using the browser cache when the user exits the...
6.5CVSS
6.5AI Score
0.002EPSS
Survey King v0.3.0 does not filter data properly when exporting excel files, allowing attackers to execute arbitrary code or access sensitive information via a CSV injection...
9.8CVSS
9.5AI Score
0.003EPSS