Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-26713
HistoryJan 12, 2021 - 2:17 p.m.

CVE-2020-26713

2021-01-1214:17:55
mitre
www.cve.org
8
redcap vulnerability xss
todolist parameter
reflected xss
stolen login session
unauthorized acts

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON

REDCap 10.3.4 contains a XSS vulnerability in the ToDoList function with parameter sort. The information submitted by the user is immediately returned in the response and not escaped leading to the reflected XSS vulnerability. Attackers can exploit vulnerabilities to steal login session information or borrow user rights to perform unauthorized acts.

Related

prion 1
cve 1
nvd 1
prion
prion
Cross site scripting
2021-01-12 15:15:00
cve
cve
CVE-2020-26713
2021-01-12 15:15:13
nvd
nvd
CVE-2020-26713
2021-01-12 15:15:13

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON
Related for CVELIST:CVE-2020-26713
prion1cve1nvd1