10 matches found
CVE-2022-31496
LibreHealth EHR Base 2.0.0 allows incorrect interface/super/managesitefiles.php access...
PT-2022-20764 · Unknown · Librehealth Ehr Base
Name of the Vulnerable Software and Affected Versions: LibreHealth EHR Base version 2.0.0 Description: The issue allows for incorrect access to the interface/super/manage site files.php. The estimated number of potentially affected devices worldwide is not available. There is no information about...
CVE-2022-31495
LibreHealth EHR Base 2.0.0 allows gacl/admin/acladmin.php returnpage XSS...
CVE-2022-31494
LibreHealth EHR Base 2.0.0 allows gacl/admin/acladmin.php action XSS...
CVE-2022-31498
LibreHealth EHR Base 2.0.0 allows interface/orders/patientmatchdialog.php key XSS...
Cross site scripting
Cross Site scripting XSS vulnerability inLibreHealth EHR Base 2.0.0 via interface/usergroup/usergroupadminadd.php Username...
CVE-2022-31492
CVE-2022-31492 concerns a Cross Site Scripting (XSS) vulnerability in LibreHealth EHR Base 2.0.0, exploitable via interface/usergroup/usergroup_admin_add.php Username. Affected component is the LibreHealth EHR Base 2.0.0 web interface; root cause is input handling in the Username field that allow...
CVE-2022-31492
Cross Site scripting XSS vulnerability inLibreHealth EHR Base 2.0.0 via interface/usergroup/usergroupadminadd.php Username...
CVE-2022-31493
LibreHealth EHR Base 2.0.0 allows gacl/admin/acladmin.php aclid XSS...
CVE-2022-31493
LibreHealth EHR Base 2.0.0 allows gacl/admin/acladmin.php aclid XSS...