EUVD-2022-34050

Malicious code in bioql PyPI...

CVE-2022-46484

Information disclosure in password protected surveys in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to view the password to access and arbitrarily submit surveys...

CVE-2022-46484

Information disclosure in password protected surveys in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to view the password to access and arbitrarily submit surveys...

CVE-2022-46484

Information disclosure in password protected surveys in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to view the password to access and arbitrarily submit surveys...

CVE-2022-46484

Information disclosure in password protected surveys in Data Illusion Survey Software Solutions NGSurvey v2.4.28 and below allows attackers to view the password to access and arbitrarily submit surveys...

CVE-2022-46484

The CVE-2022-46484 entry affects Data Illusion Survey Software Solutions NGSurvey (NGSurvey) v2.4.28 and earlier. The vulnerability enables information disclosure by allowing attackers to view the access password, which in turn could be used to access and arbitrarily submit surveys. The connected...

Survey Sparrow Enterprise Survey Software 2022 Cross Site Scripting

Exploit Title: Survey Sparrow Enterprise Survey Software 2022 - Stored Cross-Site Scripting XSS Date: May 11 2022 Exploit Author: Pankaj Kumar Thakur Vendor Homepage: https://surveysparrow.com/ Software Link: https://surveysparrow.com/enterprise-survey-software/ Version: 2022 Tested on: Windows C...

CVE-2022-29728

Survey Sparrow Enterprise Survey Software 2022 has a Reflected cross-site scripting XSS vulnerability in the test parameter...

CVE-2022-29727

Survey Sparrow Enterprise Survey Software 2022 has a Stored cross-site scripting XSS vulnerability in the Signup parameter...

CVE-2022-29727

Survey Sparrow Enterprise Survey Software 2022 has a Stored cross-site scripting XSS vulnerability in the Signup parameter...

Cross site scripting

Survey Sparrow Enterprise Survey Software 2022 has a Stored cross-site scripting XSS vulnerability in the Signup parameter...

CVE-2022-29728

Survey Sparrow Enterprise Survey Software 2022 contains a reflected XSS vulnerability in the test parameter. The issue stems from insufficient input validation/filtering and output encoding of user-supplied data, allowing injected JavaScript to be reflected back to the client. Impact is client-si...

CVE-2022-29727

CVE-2022-29727 affects Survey Sparrow Enterprise Survey Software 2022. Vulnerable component: the Signup parameter, due to missing input validation, enabling stored XSS. Documented impact: client-side JavaScript execution. CVSS scores: v3.1 base 5.4 (MEDIUM), vector NETWORK/AV:N/AC:L/PR:L/UI:R/S:C...

Survey Sparrow Enterprise Survey Software 跨站脚本漏洞

A cross-site scripting vulnerability exists in Survey Sparrow Enterprise Survey Software version 2022, which originates in the test parameter The vulnerability is caused by a lack of data validation filtering of user-supplied data and output. An attacker could use this vulnerability to execute...

Typeform, Popular Online Survey Software, Suffers Data Breach

Typeform, the popular Spanish-based online data collection company specializes in form building and online surveys for businesses worldwide, has today disclosed that the company has suffered a data breach that exposed partial data of its some users. The company identified the breach on June 27th,...

LimeSurvey 1.92+ Build120620 Remote File Inclusion / Traversal

:::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ posdubatgmail.com 2012-06-22 LimeSurvey 1.92+ build 120620 Multiple Vulnerabilities Script: "LimeSurvey - the free and open source survey software...