3 matches found
CVE-2025-15479
Stored cross-site scripting XSS, CWE-79 in the survey content and administration functionality in Data Illusion Zumbrunn NGSurvey Enterprise Edition 3.6.4 on all supported platforms on Windows and Linux servers allows authenticated remote users with survey creation or edit privileges to execute...
CVE-2025-15479
NGSurvey Enterprise Edition 3.6.4 from Data Illusion Zumbrunn is affected by a stored XSS (CWE-79) in survey content and administration functions. The vulnerability allows authenticated users with survey creation/edit privileges to inject JavaScript that executes in other users’ browsers, potenti...
Data Illusion Zumbrunn NGSurvey Enterprise Edition 安全漏洞
Data Illusion Zumbrunn NGSurvey Enterprise Edition is a questionnaire and data collection system from the Swiss company Data Illusion Zumbrunn. A security vulnerability exists in Data Illusion Zumbrunn NGSurvey Enterprise Edition version 3.6.4, which stems from improper coding of survey content a...