Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openemr openemr vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2020-29142
A SQL injection vulnerability in interface/usergroup/usergroup_admin.php in OpenEMR prior to 5.0.2.5 allows a remote authenticated malicious user to execute arbitrary SQL commands via the schedule_facility parameter when restrict_user_facility=on is in global settings.
Open-emr Openemr
3.5
CVSSv2
CVE-2022-1458
Stored XSS Leads To Session Hijacking in GitHub repository openemr/openemr before 6.1.0.1.
Open-emr Openemr
5.5
CVSSv2
CVE-2022-1459
Non-Privilege User Can View Patient’s Disclosures in GitHub repository openemr/openemr before 6.1.0.1.
Open-emr Openemr
4
CVSSv2
CVE-2022-1461
Non Privilege User can Enable or Disable Registered in GitHub repository openemr/openemr before 6.1.0.1.
Open-emr Openemr
6.5
CVSSv2
CVE-2018-15155
OS command injection occurring in versions of OpenEMR prior to 5.0.1.4 allows a remote authenticated malicious user to execute arbitrary commands by making a crafted request to interface/fax/fax_dispatch.php after modifying the "hylafax_enscript" global variable in inte...
Open-emr Openemr
NA
CVE-2023-2945
Missing Authorization in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2946
Improper Access Control in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2947
Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2948
Cross-site Scripting (XSS) - Generic in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2949
Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »