CVE-2020-20070 Information

Description

Cross Site Scripting vulnerability found in wkeyuan DWSurvey 1.0 allows a remote attacker to execute arbitrary code via thequltemld parameter of the qu-multi-fillblank!answers.action file.

Reference

https://github.com/wkeyuan/DWSurvey/issues/48