Vulnerabilities > Vanderbilt > Redcap > 4.14.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2013-06-17 | CVE-2013-4608 | Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in REDCap before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via vectors involving the Graphical Data View & Descriptive Stats page. | 4.3 |
| 2013-06-17 | CVE-2012-6565 | Cross-Site Scripting vulnerability in Vanderbilt Redcap 4.14.0/4.14.1/4.14.2 Cross-site scripting (XSS) vulnerability in REDCap before 4.14.3 allows remote authenticated users to inject arbitrary web script or HTML via uppercase characters in JavaScript events within user-defined labels. | 3.5 |
| 2013-06-17 | CVE-2012-6564 | Cross-Site Scripting vulnerability in Vanderbilt Redcap Cross-site scripting (XSS) vulnerability in REDCap before 4.14.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |