CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SurveyKing v0.2.0 was discovered to retain users' session cookies after logout, allowing attackers to login to the system and access data using the browser cache when the user exits the application...

6.5CVSS7.1AI score0.00403EPSS

Exploits1References1

RedhatCVE•added 2025/02/14 12:31 a.m.•6 views

CVE-2024-35049

SurveyKing v1.3.1 was discovered to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590...

9.1CVSS7.1AI score0.00403EPSS

Exploits2References1

RedhatCVE•added 2025/02/14 12:28 a.m.•4 views

CVE-2024-35050

An issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin...

8.8CVSS7AI score0.00163EPSS

Exploits1References1

RedhatCVE•added 2025/02/13 11:21 p.m.•6 views

CVE-2024-35048

An issue in SurveyKing v1.3.1 allows attackers to execute a session replay attack after a user changes their password...

4.3CVSS7AI score0.00109EPSS

Exploits1References1

OSV•added 2024/05/14 3:39 p.m.•0 views

CVE-2024-35049

SurveyKing v1.3.1 was discovered to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590...

9.1CVSS5.8AI score

Exploits0References1

NVD•added 2024/05/14 3:39 p.m.•13 views

CVE-2024-35049

SurveyKing v1.3.1 was discovered to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590...

9.1CVSS6.6AI score0.00269EPSS

Exploits1References1

NVD•added 2024/05/14 3:39 p.m.•7 views

CVE-2024-35050

An issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin...

8.8CVSS6.7AI score0.00163EPSS

Exploits1References1

OSV•added 2024/05/14 3:39 p.m.•0 views

CVE-2024-35050

An issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin...

8.8CVSS5.8AI score

Exploits0References1

NVD•added 2024/05/14 3:39 p.m.•8 views

CVE-2024-35048

An issue in SurveyKing v1.3.1 allows attackers to execute a session replay attack after a user changes their password...

4.3CVSS6.8AI score0.00109EPSS

Exploits1References1

OSV•added 2024/05/14 3:39 p.m.•0 views

CVE-2024-35048

An issue in SurveyKing v1.3.1 allows attackers to execute a session replay attack after a user changes their password...

4.3CVSS5.9AI score0.00109EPSS

Exploits1References1

CNNVD•added 2024/05/14 12:0 a.m.•2 views

SurveyKing 安全漏洞

SurveyKing is a powerful questionnaire system and exam system for javahuang individual developers. A security vulnerability exists in SurveyKing v1.3.1, which originated from a vulnerability that allows an attacker to perform a session replay attack after a user changes their password...

4.3CVSS6.7AI score0.00109EPSS

Exploits1References4

CNNVD•added 2024/05/14 12:0 a.m.•1 views

SurveyKing 安全漏洞

SurveyKing is a powerful survey system and exam system for javahuang individual developers. A security vulnerability exists in SurveyKing v1.3.1, which stems from a vulnerability that allows an attacker to elevate privileges by reusing a user session ID that has been deleted by the administrator...

8.8CVSS6.7AI score0.00163EPSS

Exploits1References4

CNNVD•added 2024/05/14 12:0 a.m.•2 views

SurveyKing 安全漏洞

SurveyKing is a powerful questionnaire system and exam system for javahuang individual developers. A security vulnerability exists in SurveyKing v1.3.1, which stems from the ability to keep a session active after a user logs out...

9.1CVSS6.7AI score0.00269EPSS

Exploits1References4