Browse all 4 CVE security advisories affecting Survey Maker team. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The Survey Maker team develops online survey and form-building tools used for data collection and customer feedback. Historically, their applications have been vulnerable to cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from improper input validation and access control issues. The team has addressed multiple CVEs, including critical RCE vulnerabilities in their survey creation modules and XSS issues in user-generated content handling. While no major public security incidents have been documented, their consistent vulnerability pattern suggests ongoing challenges in secure coding practices, particularly around input sanitization and permission management.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-22697 | WordPress Survey Maker plugin <= 3.2.0 - Broken Access Control vulnerability — Survey MakerCWE-862 | 5.3 | Medium | 2024-12-13 |
| CVE-2024-29918 | WordPress Survey Maker plugin <= 4.0.6 - Reflected Cross Site Scripting (XSS) vulnerability — Survey MakerCWE-79 | 7.1 | High | 2024-03-27 |
| CVE-2024-27996 | WordPress Survey Maker plugin <= 4.0.5 - Cross Site Scripting (XSS) vulnerability — Survey MakerCWE-79 | 5.9 | Medium | 2024-03-19 |
| CVE-2021-26256 | WordPress Survey Maker plugin <= 2.0.6 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability — Survey Maker (WordPress plugin)CWE-79 | 4.7 | Medium | 2022-02-21 |
This page lists every published CVE security advisory associated with Survey Maker team. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.