Vulnerabilities > Diaowen > Dwsurvey > 2019.07.22

DATE CVE VULNERABILITY TITLE RISK
2019-08-16 CVE-2019-15095 Cross-site Scripting vulnerability in Diaowen Dwsurvey 20190722
DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter.
network
diaowen CWE-79
4.3
4.3
2019-08-07 CVE-2019-14747 Cross-site Scripting vulnerability in Diaowen Dwsurvey 20190722
DWSurvey through 2019-07-22 has stored XSS via the design/my-survey-design!copySurvey.action surveyName parameter.
network
diaowen CWE-79
4.3
4.3