CVE-2019-15095by Jeremyin Security Bulletinson Posted on August 16, 2019 DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter.