CVE-2024-56313
Published Dec 22, 2024
Last updated a month ago
- Description
- A stored cross-site scripting (XSS) vulnerability in the Calendar feature of REDCap through 14.9.6 allows authenticated users to inject malicious scripts into the Notes field of a calendar event. When the event is viewed, the crafted payload is executed, potentially enabling the execution of arbitrary web scripts.
- Source
- cve@mitre.org
- NVD status
- Awaiting Analysis
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-79
- Hype score
- Not currently trending
CVE-2024-56313 Stored XSS Vulnerability in REDCap Calendar Allows Script Injecti... https://t.co/sicBHZm0k5 Customizable Vulnerability Alerts: https://t.co/U7998fz7yk
@VulmonFeeds
22 Dec 2024
55 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-56313 A stored cross-site scripting (XSS) vulnerability in the Calendar feature of REDCap through 15.0.0 allows authenticated users to inject malicious scripts into the Not… https://t.co/HMRgT8ayTz
@CVEnew
22 Dec 2024
650 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes