Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2024-35049
Disclosure Date: May 14, 2024 (last updated May 15, 2024)
SurveyKing v1.3.1 was discovered to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590.
0
Attacker Value
Unknown
CVE-2022-25590
Disclosure Date: March 25, 2022 (last updated February 23, 2025)
SurveyKing v0.2.0 was discovered to retain users' session cookies after logout, allowing attackers to login to the system and access data using the browser cache when the user exits the application.
0
