Vulnerabilities > Vanderbilt > Redcap > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-12 | CVE-2020-26712 | SQL Injection vulnerability in Vanderbilt Redcap 10.0.20/10.3.4 REDCap 10.3.4 contains a SQL injection vulnerability in the ToDoList function via sort parameter. | 10.0 |
| 2013-06-17 | CVE-2013-4610 | Unspecified vulnerability in the Data Search utility in data-entry forms in REDCap before 5.0.3 and 5.1.x before 5.1.2 has unknown impact and remote attack vectors. | 10.0 |
| 2013-06-17 | CVE-2013-4611 | Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the Online Designer page or (2) the Manage Survey Participants page. | 10.0 |