Cross-Site Request Forgery Vulnerability in REDCap File Repository
CVE-2017-10961
8.8HIGH
What is CVE-2017-10961?
REDCap versions prior to 7.5.1 are susceptible to Cross-Site Request Forgery (CSRF), specifically within the File Repository and File Upload functionalities. This vulnerability may allow attackers to exploit user sessions to execute unintended actions without user consent, potentially leading to unauthorized file deletion or manipulation. It is recommended for users to upgrade to the latest version to mitigate this risk and enhance overall security.