CVE-2020-20070

Published June 20th, 2023

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

Cross Site Scripting vulnerability found in wkeyuan DWSurvey 1.0 allows a remote attacker to execute arbitrary code via thequltemld parameter of the qu-multi-fillblank!answers.action file.

wkeyuan/DWSurvey

Survey System. 最好用的开源问卷调查系统、表单系统。

GitHub

2.98K