Vulnerabilities > Vanderbilt > Redcap > 14.9.6

DATE CVE VULNERABILITY TITLE RISK
2025-01-10 CVE-2025-23110 Cross-site Scripting vulnerability in Vanderbilt Redcap 14.9.6
An issue was discovered in REDCap 14.9.6.
network
low complexity
vanderbilt CWE-79
6.1
6.1
2025-01-10 CVE-2025-23111 Cross-site Scripting vulnerability in Vanderbilt Redcap 14.9.6
An issue was discovered in REDCap 14.9.6.
network
low complexity
vanderbilt CWE-79
6.1
6.1
2025-01-10 CVE-2025-23112 Cross-site Scripting vulnerability in Vanderbilt Redcap 14.9.6
An issue was discovered in REDCap 14.9.6.
network
low complexity
vanderbilt CWE-79
6.1
6.1
2025-01-10 CVE-2025-23113 Cross-Site Request Forgery (CSRF) vulnerability in Vanderbilt Redcap 14.9.6
An issue was discovered in REDCap 14.9.6.
network
low complexity
vanderbilt CWE-352
8.8
8.8
2025-01-09 CVE-2024-56376 Cross-site Scripting vulnerability in Vanderbilt Redcap 14.9.6
A stored cross-site scripting (XSS) vulnerability in the built-in messenger of REDCap 14.9.6 allows authenticated users to inject malicious scripts into the message field.
network
low complexity
vanderbilt CWE-79
5.4
5.4
2025-01-09 CVE-2024-56377 Cross-site Scripting vulnerability in Vanderbilt Redcap 14.9.6
A stored cross-site scripting (XSS) vulnerability in survey titles of REDCap 14.9.6 allows authenticated users to inject malicious scripts into the Survey Title field or Survey Instructions.
network
low complexity
vanderbilt CWE-79
5.4
5.4