CVE-2017-1000240

2017-11-1703:29:00

Google

osv.dev

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

43.4%

JSON

The application OpenEMR is affected by multiple reflected & stored Cross-Site Scripting (XSS) vulnerabilities affecting version 5.0.0 and prior versions. These vulnerabilities could allow remote authenticated attackers to inject arbitrary web script or HTML.

References

www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2017-001