2 matches found
CVE-2025-23113
An issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the alert-title while performing an upload of a CSV file containing a list of alert configuration. An attacker can send the victim a CSV file containing an HTML injection payload in the alert-title. Once...
CVE-2025-23113
creationtimestamp| type| source ---|---|--- 2025-01-10 22:04:48+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1249 2025-01-10 22:16:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113806369662260579 2025-01-10 22:16:30+00:00| seen|...