CVE-2024-35050
8.8HIGHAn issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin.
게시됨: 5/14/2024업데이트됨: 4/23/2025
설명
An issue in SurveyKing v1.3.1 allows attackers to escalate privileges via re-using the session ID of a user that was deleted by an Admin.
AI 분석AI 기반
영향받는 제품
surveykingsurveyking
1.3.1
참조
- https://github.com/javahuang/SurveyKing/issues/57ExploitIssue TrackingThird Party Advisory
- https://github.com/javahuang/SurveyKing/issues/57ExploitIssue TrackingThird Party Advisory