3 matches found
CVE-2023-38825
creationtimestamp| type| source ---|---|--- 2026-06-15 16:38:19+00:00| seen| MISP/a3f84b6e-ea8b-4ade-b4a9-8885f64587fd...
CVE-2023-38825
SQL injection vulnerability in Vanderbilt REDCap before v.13.8.0 allows a remote attacker to obtain sensitive information via the password reset mechanism in MyCapMobileApp/update.php...
CVE-2023-38825
Summary: CVE-2023-38825 is a SQL injection vulnerability in Vanderbilt REDCap prior to v13.8.0, exposed via the MyCapMobileApp/update.php password-reset endpoint. Affected software: Vanderbilt REDCap (pre-13.8.0). Root cause/impact: improper input handling in the password-reset path allows a remo...