Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open-emr openemr vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-2947
Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2948
Cross-site Scripting (XSS) - Generic in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2949
Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
NA
CVE-2023-2950
Improper Authorization in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
312
VMScore
CVE-2022-1178
Stored Cross Site Scripting in GitHub repository openemr/openemr before 6.0.0.4.
Open-emr Openemr
312
VMScore
CVE-2022-1181
Stored Cross Site Scripting in GitHub repository openemr/openemr before 6.0.0.2.
Open-emr Openemr
383
VMScore
CVE-2018-18035
A vulnerability in flashcanvas.swf in OpenEMR prior to 5.0.1 Patch 6 could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack on a targeted system.
Open-emr Openemr
NA
CVE-2023-2566
Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr before 7.0.1.
Open-emr Openemr
490
VMScore
CVE-2018-10572
interface/patient_file/letter.php in OpenEMR prior to 5.0.1 allows remote authenticated users to bypass intended access restrictions via the newtemplatename and form_body parameters.
Open-emr Openemr
578
VMScore
CVE-2018-10573
interface/fax/fax_dispatch.php in OpenEMR prior to 5.0.1 allows remote authenticated users to bypass intended access restrictions via the scan parameter.
Open-emr Openemr
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »