CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

378 matches found

RedhatCVE•added 2026/01/09 12:31 p.m.•3 views

CVE-2023-40277

An issue was discovered in OpenClinic GA 5.247.01. A Reflected Cross-Site Scripting XSS vulnerability has been discovered in the login.jsp message parameter...

6.1CVSS5.9AI score0.00299EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:30 p.m.•4 views

CVE-2023-40279

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to main.do...

7.5CVSS6.8AI score0.19755EPSS

Exploits4References1

RedhatCVE•added 2026/01/09 12:30 p.m.•1 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp...

7.5CVSS6.8AI score0.01294EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:30 p.m.•1 views

CVE-2023-40275

An issue was discovered in OpenClinic GA 5.247.01. It allows retrieval of patient lists via queries such as findFirstname= to common/search/searchByAjax/patientslistShow.jsp...

9.1CVSS6.9AI score0.00557EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:29 p.m.•5 views

CVE-2023-40276

An issue was discovered in OpenClinic GA 5.247.01. An Unauthenticated File Download vulnerability has been discovered in pharmacy/exportFile.jsp...

9.1CVSS7AI score0.0073EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:28 p.m.•3 views

CVE-2023-40278

An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has been identified in the printAppointmentPdf.jsp component of OpenClinic GA. By changing the AppointmentUid parameter, an attacker can determine whether a specific appointment exists based on the error...

7.5CVSS6.6AI score0.11342EPSS

Exploits4References1