CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2017/08/01 5:29 a.m.•10 views

CVE-2017-12064

The csvloghtml function in library/edihistory/edihcsvinc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name...

7.5CVSS7.4AI score0.00593EPSS

Exploits0References1

OSV•added 2017/08/01 5:29 a.m.•10 views

CVE-2017-12064

The csvloghtml function in library/edihistory/edihcsvinc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name...

7.5CVSS6.7AI score

Exploits0References1

Prion•added 2017/08/01 5:29 a.m.•11 views

Design/Logic Flaw

The csvloghtml function in library/edihistory/edihcsvinc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name...

5CVSS7.4AI score0.00593EPSS

Exploits0References1Affected Software1

CVE•added 2017/08/01 5:0 a.m.•50 views

CVE-2017-12064

The CVE-2017-12064 vulnerability affects OpenEMR 5.0.0 and earlier, arising from the csv_log_html function in library/edihistory/edih_csv_inc.php. Attackers can bypass access restrictions using a specially crafted name, exposing restricted information. Public sources in the connected documents co...

7.5CVSS7.5AI score0.00593EPSS

Exploits0References1Affected Software1

Cvelist•added 2017/08/01 5:0 a.m.•17 views

CVE-2017-12064

The csvloghtml function in library/edihistory/edihcsvinc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name...

7.6AI score0.00593EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by