Lucene search
China National Vulnerability DatabaseCNVD-2022-81345HistoryApr 15, 2022 - 12:00 a.m.
REDCap Cross-Site Scripting Vulnerability (CNVD-2022-81345)
2022-04-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.13 Low
EPSS
Percentile
95.5%
A cross-site scripting vulnerability exists in versions of REDCap prior to 11.4.0, which stems from a lack of data validation filtering of user-supplied data and output in the missing data code functionality of the program. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| redcap redcap | lt | 11.4.0 |
Related
prion
prion
Cross site scripting
2022-04-13 16:15:00
cvelist
cvelist
CVE-2021-42136
2022-04-13 15:32:56
nvd
nvd
CVE-2021-42136
2022-04-13 16:15:09
cve
cve
CVE-2021-42136
2022-04-13 16:15:09
zdt
zdt
REDCap 11.3.9 - Stored Cross Site Scripting Vulnerability
2022-04-19 00:00:00
REDCap Cross Site Scripting Vulnerability
2022-04-14 00:00:00
packetstorm
packetstorm
REDCap Cross Site Scripting
2022-04-14 00:00:00
exploitdb
exploitdb
REDCap 11.3.9 - Stored Cross Site Scripting
2022-04-19 00:00:00