Vulnerability Details CVE-2013-4608
Cross-site scripting (XSS) vulnerability in REDCap before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via vectors involving the Graphical Data View & Descriptive Stats page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.4%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2013-4608
-
cpe:2.3:a:project-redcap:redcap:4.13.18
-
cpe:2.3:a:project-redcap:redcap:4.14.5
-
cpe:2.3:a:project-redcap:redcap:4.14.6
-
cpe:2.3:a:project-redcap:redcap:4.15.0
-
cpe:2.3:a:project-redcap:redcap:4.15.1
-
cpe:2.3:a:project-redcap:redcap:4.15.2
-
cpe:2.3:a:project-redcap:redcap:4.15.3
-
cpe:2.3:a:project-redcap:redcap:4.15.4
-
cpe:2.3:a:project-redcap:redcap:5.0.0
-
cpe:2.3:a:project-redcap:redcap:5.0.1
-
cpe:2.3:a:project-redcap:redcap:5.0.2
-
cpe:2.3:a:project-redcap:redcap:5.0.3
-
cpe:2.3:a:project-redcap:redcap:5.0.4
-
cpe:2.3:a:vanderbilt:redcap:-
-
cpe:2.3:a:vanderbilt:redcap:4.14.0
-
cpe:2.3:a:vanderbilt:redcap:4.14.1
-
cpe:2.3:a:vanderbilt:redcap:4.14.2
-
cpe:2.3:a:vanderbilt:redcap:4.14.3
-
cpe:2.3:a:vanderbilt:redcap:4.14.4