OpenEMR is an open source healthcare management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. openEMR has a cross-site scripting vulnerability that stems from the lack of a user-supplied data and output data validation filter in the fld_title parameter in interface/super/rules/index.php?action=edit!submit_summary. The fld_title parameter in interface/super/rules/index.php? An authenticated attacker could use this vulnerability to execute JavaScript code on the client side.