Vulnerabilidades em Vanderbilt
6 resultadosCVE-2024-56376MEDIUMA stored cross-site scripting (XSS) vulnerability in the built-in messenger of REDCap 14.9.6 allows authenticated users to inject malicious EPSS 0.4%CVE-2024-56377MEDIUMA stored cross-site scripting (XSS) vulnerability in survey titles of REDCap 14.9.6 allows authenticated users to inject malicious scripts iEPSS 0.4%CVE-2025-23110MEDIUMAn issue was discovered in REDCap 14.9.6. A Reflected cross-site scripting (XSS) vulnerability in the email-subject field exists while perfoEPSS 0.3%CVE-2025-23112MEDIUMAn issue was discovered in REDCap 14.9.6. A stored cross-site scripting (XSS) vulnerability allows authenticated users to inject malicious sEPSS 0.3%CVE-2025-23111MEDIUMAn issue was discovered in REDCap 14.9.6. It allows HTML Injection via the Survey field name, exposing users to a redirection to a phishing EPSS 0.3%CVE-2025-23113LOWAn issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the alert-title while performing an upload of aEPSS 0.2%