CVE-2024-35050
Published
CVSS v3
8.8
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
An issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin.
One command to deploy a more powerful, self‑hosted alternative to SurveyMonkey.
GitHub