CVE-2024-28635 | SurveyJS Survey Creator up to 1.9.132 title cross site scripting (Issue 5285)

Posted by Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability was found in SurveyJS Survey Creator up to 1.9.132. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument title leads to cross site scripting.

This vulnerability is known as CVE-2024-28635. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-28635 | SurveyJS Survey Creator up to 1.9.132 title cross site scripting (Issue 5285)

Related Posts

CVE-2024-5584 | Bookly Plugin up to 23.2 on WordPress Color Profile cross site scripting

CVE-2023-49186 | Machic Core Plugin up to 1.2.6 on WordPress cross site scripting

CVE-2024-3074 | Elementor ImageBox Plugin up to 1.2.8 on WordPress cross site scripting

CVE-2023-6845 | CommentTweets Plugin up to 0.6 on WordPress cross-site request forgery