CVE-2018-17181
OpenEMR before 5.0.1 Patch 7 contains SQL injection vulnerabilities in the SaveAudit function (/portal/lib/paylib.php) and the portalAudit function (/portal/lib/appsql.class.php). These flaws allow unauthenticated network access to potentially manipulate the database, with high/severe impact per ...