CVE-2018-16521

2018-09-0515:29:00

Google

osv.dev

6.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.4%

JSON

An XML External Entity (XXE) vulnerability exists in HTML Form Entry 3.7.0, as distributed in OpenMRS Reference Application 2.8.0.

CPENameOperatorVersion
openmrs-module-htmlformentryeq3.5.1
openmrs-module-htmlformentryeqreferenceapplication-2.2
openmrs-module-htmlformentryeq2.0.4
openmrs-module-htmlformentryeq2.0.7
openmrs-module-htmlformentryeq3.6.0
openmrs-module-htmlformentryeqreferenceapplication-2.8.0
openmrs-module-htmlformentryeq1.9.0
openmrs-module-htmlformentryeq2.0.3
openmrs-module-htmlformentryeq2.1
openmrs-module-htmlformentryeq1.0.1

Name	Operator	Version
openmrs-module-htmlformentry	eq	3.5.1
openmrs-module-htmlformentry	eq	referenceapplication-2.2
openmrs-module-htmlformentry	eq	2.0.4
openmrs-module-htmlformentry	eq	2.0.7
openmrs-module-htmlformentry	eq	3.6.0
openmrs-module-htmlformentry	eq	referenceapplication-2.8.0
openmrs-module-htmlformentry	eq	1.9.0
openmrs-module-htmlformentry	eq	2.0.3
openmrs-module-htmlformentry	eq	2.1
openmrs-module-htmlformentry	eq	1.0.1