CVE-2022-25590
Published
CVSS v3
6.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
SurveyKing v0.2.0 was discovered to retain users' session cookies after logout, allowing attackers to login to the system and access data using the browser cache when the user exits the application.
One command to deploy a more powerful, self‑hosted alternative to SurveyMonkey.
GitHub