The vulnerability of the phpgacl/acl_admin.tpl template in the PHP library for managing access in web applications. This is part of the phpGACL system used for managing medical documentation in OpenEMR. It allows attackers to perform cross-site scripting attacks.
The vulnerability of the phpgacl/acladmin.tpl PHP template used in the phpGACL access control library for web applications in the OpenEMR medical documentation system is related to the lack of protection for the website structure when processing the aclid template parameter. Exploiting this...