AI Score
Confidence
High
EPSS
Percentile
41.7%
The csv_log_html function in library/edihistory/edih_csv_inc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name.
github.com/openemr/openemr/commit/b8963a5ca483211ed8de71f18227a0e66a2582ad