Lucene search
China National Vulnerability DatabaseCNVD-2022-81345HistoryApr 15, 2022 - 12:00 a.m.
REDCap Cross-Site Scripting Vulnerability (CNVD-2022-81345)
2022-04-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
redcap
cross-site scripting
vulnerability
javascript
data validation
missing data code
EPSS
0.13
Percentile
95.6%
A cross-site scripting vulnerability exists in versions of REDCap prior to 11.4.0, which stems from a lack of data validation filtering of user-supplied data and output in the missing data code functionality of the program. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
Related
prion
prion
Cross site scripting
2022-04-13 16:15:00
cvelist
cvelist
CVE-2021-42136
2022-04-13 15:32:56
nvd
nvd
CVE-2021-42136
2022-04-13 16:15:09
zdt
zdt
REDCap 11.3.9 - Stored Cross Site Scripting Vulnerability
2022-04-19 00:00:00
REDCap Cross Site Scripting Vulnerability
2022-04-14 00:00:00
cve
cve
CVE-2021-42136
2022-04-13 16:15:09
packetstorm
packetstorm
REDCap Cross Site Scripting
2022-04-14 00:00:00
exploitdb
exploitdb
REDCap 11.3.9 - Stored Cross Site Scripting
2022-04-19 00:00:00