CyberSec.Space Logo
CVEブラウザに戻る

CVE-2013-4610

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0350%
EPSS Percentile2.76th
Published2013年6月17日
Last Modified2026年4月29日

Vulnerability Description

Unspecified vulnerability in the Data Search utility in data-entry forms in REDCap before 5.0.3 and 5.1.x before 5.1.2 has unknown impact and remote attack vectors.

Affected Platforms (CPE)

📦
Project Redcap

Redcap

= 4.13.18
📦
Project Redcap

Redcap

= 4.14.5
📦
Project Redcap

Redcap

= 4.14.6
📦
Project Redcap

Redcap

= 4.15.0
📦
Project Redcap

Redcap

= 4.15.1
📦
Project Redcap

Redcap

= 4.15.2
📦
Project Redcap

Redcap

= 4.15.3
📦
Project Redcap

Redcap

= 4.15.4
📦
Project Redcap

Redcap

= 5.0.0
📦
Project Redcap

Redcap

= 5.0.1
📦
Project Redcap

Redcap

= 5.0.6
📦
Project Redcap

Redcap

= 5.1.0
📦
Project Redcap

Redcap

= 5.1.1
📦
Vanderbilt

Redcap

<= 5.0.2
📦
Vanderbilt

Redcap

= 4.14.0
📦
Vanderbilt

Redcap

= 4.14.1
📦
Vanderbilt

Redcap

= 4.14.2
📦
Vanderbilt

Redcap

= 4.14.3
📦
Vanderbilt

Redcap

= 4.14.4

References & Advisories

🔗 http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf
🔗 http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf

関連する脆弱性情報

CVE-2013-461110.0

Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving...

CVE-2020-267129.8

REDCap 10.3.4 contains a SQL injection vulnerability in the ToDoList function via sort parameter. The application uses the additio...

CVE-2021-421369.0

A stored Cross-Site Scripting (XSS) vulnerability in the Missing Data Codes functionality of REDCap before 11.4.0 allows remote at...

CVE-2017-109618.8

REDCap before 7.5.1 has CSRF in the deletion feature of the File Repository and File Upload components.