Total vulnerabilities in the database
REDCap before 9.3.0 allows XSS attacks against non-administrator accounts on the Data Import Tool page via a CSV data import file.
CVSS v3:
CVSS v2:
CWEs:
OWASP TOP 10: