VULHUB ™

Mod_Survey is prone to HTML injection attacks via survey input fields. They may permit remote attackers to persistently inject HTML and script code into surveys, which may be rendered in the web browser of administrative or other users. Exploitation could permit for theft of cookie-based authentication credentials. Other attacks are also possible.

Mod_Survey is prone to HTML injection attacks via survey input fields. They may permit remote attackers to persistently inject HTML and script code into surveys, which may be rendered in the web browser of administrative or other users. Exploitation could permit for theft of cookie-based authentication credentials. Other attacks are also possible.