3 matches found
CVE-2018-15153
OS command injection occurring in versions of OpenEMR before 5.0.1.4 allows a remote authenticated attacker to execute arbitrary commands by making a crafted request to interface/main/daemonframe.php after modifying the "hylafaxserver" global variable in interface/super/editglobals.php...
CVE-2018-15153
OpenEMR is affected by an OS command-injection vulnerability in versions before 5.0.1.4. The issue arises when a remote authenticated attacker crafts a request to interface/main/daemon_frame.php after modifying the hylafax_server global variable in interface/super/edit_globals.php. The root cause...
CVE-2018-15153
OS command injection occurring in versions of OpenEMR before 5.0.1.4 allows a remote authenticated attacker to execute arbitrary commands by making a crafted request to interface/main/daemonframe.php after modifying the “hylafaxserver” global variable in interface/super/editglobals.php. Recent...