Lucene search
+L

35 matches found

EUVD
EUVD
added 2026/03/25 11:53 p.m.4 views

EUVD-2026-16050

OpenEMR is a free and open source electronic health records and medical practice management application. A Broken Access Control vulnerability in OpenEMR up to and including version 8.0.0.3 allows low-privilege users to view and download Ensora eRx error logs without proper authorization checks...

7.7CVSS5.8AI score0.00271EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-4352

Malware in sbrugna...

7.5CVSS7.5AI score0.00496EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-23434

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00737EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34938

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00625EPSS
Exploits1References2
CVE
CVE
added 2025/08/13 12:0 a.m.22 views

CVE-2025-50594

The CVE-2025-50594 entry relates to Danphe Health Hospital Management System EMR 3.2. A vulnerability in /Code/Websites/DanpheEMR/Controllers/Settings/SecuritySettingsController.cs allows attackers to reset any user account password, indicating a broken access control/permissions check. Reports i...

9.8CVSS7.1AI score0.00372EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:13 a.m.5 views

CVE-2023-1151

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file administrator.php of the component Cookie Handler. The manipulation of the argument userid leads to sql...

9.8CVSS7.4AI score0.00737EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:45 p.m.14 views

CVE-2022-2693

A vulnerability has been found in SourceCodester Electronic Medical Records System and classified as critical. This vulnerability affects unknown code of the file register.php of the component UPDATE Statement Handler. The manipulation of the argument pconsultation leads to sql injection. The...

8.8CVSS7.6AI score0.00625EPSS
Exploits1References1
Packet Storm News
Packet Storm News
added 2025/04/29 12:0 a.m.7 views

Efficient Patient-Centric EMR Sharing Block Tree

Flexible sharing of electronic medical records EMRs is an urgent need in healthcare, as fragmented storage creates EMR management complexity for both practitioners and patients. Blockchain has emerged as a promising solution to address the limitations of centralized EMR systems regarding...

6.7AI score
Exploits0
CNVD
CNVD
added 2023/05/31 12:0 a.m.15 views

OpenEMR Cross-Site Scripting Vulnerability

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. A cross-site scripting vulnerability exists in OpenEMR prior to version 7.0.1. The...

4.8CVSS6.1AI score0.90401EPSS
Exploits1References1
CNVD
CNVD
added 2023/05/17 12:0 a.m.46 views

OpenEMR Access Control Error Vulnerability (CNVD-2023-40910)

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. An Access Control Error vulnerability exists in OpenEMR versions prior to 7.0.1,...

8.8CVSS6.6AI score0.0061EPSS
Exploits1References1
OSV
OSV
added 2023/03/02 7:15 a.m.2 views

CVE-2023-1151

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file administrator.php of the component Cookie Handler. The manipulation of the argument userid leads to sql...

9.8CVSS6.5AI score0.00737EPSS
Exploits1References3
NVD
NVD
added 2023/03/02 7:15 a.m.16 views

CVE-2023-1151

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file administrator.php of the component Cookie Handler. The manipulation of the argument userid leads to sql...

9.8CVSS7.4AI score0.00737EPSS
Exploits1References3
Prion
Prion
added 2023/03/02 7:15 a.m.18 views

Sql injection

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file administrator.php of the component Cookie Handler. The manipulation of the argument userid leads to sql...

6.5CVSS9.7AI score0.00737EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/03/02 6:31 a.m.52 views

CVE-2023-1151

CVE-2023-1151 affects SourceCodester Electronic Medical Records System 1.0, specifically the Cookie Handler’s administrator.php. The vulnerability arises from manipulating the userid parameter, causing SQL injection via a functionality exposed in that file. It is exploitable remotely, and the exp...

9.8CVSS8.3AI score0.00737EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/03/02 6:31 a.m.24 views

CVE-2023-1151 SourceCodester Electronic Medical Records System Cookie administrator.php sql injection

A vulnerability was found in SourceCodester Electronic Medical Records System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file administrator.php of the component Cookie Handler. The manipulation of the argument userid leads to sql...

6.5CVSS10AI score0.00737EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/03/02 12:0 a.m.5 views

PT-2023-16783 · Sourcecodester · Sourcecodester Electronic Medical Records System

Name of the Vulnerable Software and Affected Versions: SourceCodester Electronic Medical Records System version 1.0 Description: A critical issue has been found in the Cookie Handler component of the SourceCodester Electronic Medical Records System, specifically in the file administrator.php. The...

9.8CVSS8.1AI score0.00737EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/03/02 12:0 a.m.5 views

Electronic Medical Records System SQL注入漏洞

Electronic Medical Records System is an electronic medical records system. A SQL injection vulnerability exists in SourceCodester Electronic Medical Records System version 1.0, which stems from an incorrect manipulation of the parameter userid resulting in sql injection...

9.8CVSS7.1AI score0.00737EPSS
Exploits1References4
NVD
NVD
added 2022/08/06 6:15 p.m.24 views

CVE-2022-2693

A vulnerability has been found in SourceCodester Electronic Medical Records System and classified as critical. This vulnerability affects unknown code of the file register.php of the component UPDATE Statement Handler. The manipulation of the argument pconsultation leads to sql injection. The...

8.8CVSS0.00625EPSS
Exploits1References2
Prion
Prion
added 2022/08/06 6:15 p.m.16 views

Sql injection

A vulnerability has been found in SourceCodester Electronic Medical Records System and classified as critical. This vulnerability affects unknown code of the file register.php of the component UPDATE Statement Handler. The manipulation of the argument pconsultation leads to sql injection. The...

6.5CVSS9AI score0.00625EPSS
Exploits1References2
CVE
CVE
added 2022/08/06 5:21 p.m.63 views

CVE-2022-2693

The CVE-2022-2693 vulnerability affects SourceCodester Electronic Medical Records System, specifically the register.php file in the UPDATE Statement Handler. The root cause is injectable SQL through the pconsultation parameter, allowing remote exploitation with publicly disclosed exploits. Docume...

8.8CVSS7.9AI score0.00625EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder