Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in the Public Survey function of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into the 'Survey Title' and 'Survey Instructions' fields. This vulnerability could be exploited by attackers to execute malicious scripts when the survey is accessed through its public link. It is advised to update to version 14.2.1 or later to fix this issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
REDCap 安全漏洞
Vulnerability Description
REDCap是REDCap开源的一款数据收集和管理Web应用程序。 REDCap 13.1.9版本存在安全漏洞,该漏洞源于公共调查功能中的存储型跨站脚本漏洞,可能导致经过身份验证的用户通过注入特制有效载荷执行任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A