Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in the Calendar function of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into the 'Notes' field of a calendar event. This could lead to the execution of malicious scripts when the event is viewed. Updating to version 14.2.1 or later is recommended to remediate this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
REDCap 安全漏洞
Vulnerability Description
REDCap是REDCap开源的一款数据收集和管理Web应用程序。 REDCap 13.1.9版本存在安全漏洞,该漏洞源于日历功能中的存储型跨站脚本漏洞,可能导致经过身份验证的用户通过注入特制有效载荷执行任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A