Every CVE whose affected-product data names Project-redcap Redcap, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2013-4610 — CVSS 10.0 (critical): Unspecified vulnerability in the Data Search utility in data-entry forms in REDCap before 5.0.3 and 5.1.x before 5.1.2 has unknown impact…
CVE-2013-4611 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the…
CVE-2012-6567 — CVSS 6.5 (medium): REDCap before 4.14.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the logic of a custom rule.
CVE-2013-4609 — CVSS 6.5 (medium): REDCap before 5.0.4 and 5.1.x before 5.1.3 does not reject certain undocumented syntax within branching logic and calculations, which…
CVE-2013-4608 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in REDCap before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via vectors…
CVE-2013-4612 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in REDCap before 5.1.0 allow remote attackers to inject arbitrary web script or HTML…