2 matches found
CVE-2020-20070
Cross Site Scripting vulnerability found in wkeyuan DWSurvey 1.0 allows a remote attacker to execute arbitrary code via thequltemld parameter of the qu-multi-fillblank!answers.action file...
CVE-2020-20070
CVE-2020-20070 is a Cross-Site Scripting vulnerability in wkeyuan DWSurvey 1.0 that allows remote attackers to execute arbitrary code via the qultemld parameter in the qu-multi-fillblank!answers.action endpoint. NVD/CM sources assign CVSS v3.1 base score 6.1 (MEDIUM) with NETWORK attack vector, L...