CVE-2020-26713 – REDCap 10.3.4 contains a XSS vulnerability in the ToDoList function with parameter sort. T …

12 January 2021

Vuln ID: CVE-2020-26713

Published: 2021-01-12 15:15:13Z

Description: REDCap 10.3.4 contains a XSS vulnerability in the ToDoList function with parameter sort. The information submitted by the user is immediately returned in the response and not escaped leading to the reflected XSS vulnerability. Attackers can exploit vulnerabilities to steal login session information or borrow user rights to perform unauthorized acts.

Source: NVD.NIST.GOV

Date:

12 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Applying DevSecOps principles to machine learning workloads25 April 2024
Overcoming GenAI challenges in healthcare cybersecurity25 April 2024
25 cybersecurity AI stats you should know25 April 2024
73% of SME security pros missed or ignored critical alerts25 April 2024
Battening down the hatches: Navigating third-party cyber threats 25 April 2024