Dangerous XSS Bugs in RedCAP Threaten Academic & Scientific Research
July 31, 2024 at 10:23AM Three cross-site scripting (XSS) vulnerabilities (CVE-2024-37394, CVE-2024-37395, and CVE-2024-37396) were found in REDCap, a web app used by researchers. These vulnerabilities could allow attackers to execute malicious JavaScript code, potentially compromising sensitive data. Updating to REDCap version 14.2.1 or later is recommended to mitigate these flaws. Based on the meeting … Read more