2019-08-07 15:12:32
mitre
PUBLISHED
DWSurvey through 2019-07-22 has stored XSS via the design/my-survey-design!copySurvey.action surveyName parameter.