Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openemr vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2020-29142
A SQL injection vulnerability in interface/usergroup/usergroup_admin.php in OpenEMR prior to 5.0.2.5 allows a remote authenticated malicious user to execute arbitrary SQL commands via the schedule_facility parameter when restrict_user_facility=on is in global settings.
Open-emr Openemr
3.5
CVSSv2
CVE-2022-1458
Stored XSS Leads To Session Hijacking in GitHub repository openemr/openemr before 6.1.0.1.
Open-emr Openemr
5.5
CVSSv2
CVE-2022-1459
Non-Privilege User Can View Patient’s Disclosures in GitHub repository openemr/openemr before 6.1.0.1.
Open-emr Openemr
4
CVSSv2
CVE-2022-1461
Non Privilege User can Enable or Disable Registered in GitHub repository openemr/openemr before 6.1.0.1.
Open-emr Openemr
6.5
CVSSv2
CVE-2018-15155
OS command injection occurring in versions of OpenEMR prior to 5.0.1.4 allows a remote authenticated malicious user to execute arbitrary commands by making a crafted request to interface/fax/fax_dispatch.php after modifying the "hylafax_enscript" global variable in inte...
Open-emr Openemr
NA
CVE-2023-2945
Missing Authorization in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2946
Improper Access Control in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2947
Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2948
Cross-site Scripting (XSS) - Generic in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2949
Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »