SQL injection vulnerability in interface/login/validateUser.php in OpenEMR 4.1.0 and possibly earlier allows remote malicious users to execute arbitrary SQL commands via the u parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open-emr openemr 4.0.0 |
||
open-emr openemr 3.2.0 |
||
open-emr openemr 3.1.0 |
||
open-emr openemr |