Cctv0X01

**Name of the Vulnerable Software and Affected Versions** DWSurvey versions prior to 2019-07-22 **Description** The issue allows for stored XSS via the `surveyName` parameter in the "design/my-survey-design!copySurvey.action" endpoint. **Recommendations** For versions prior to 2019-07-22, avoid using the `surveyName` parameter in the "design/my-survey-design!copySurvey.action" endpoint until the issue is resolved.