2 matches found
CVE-2018-18035
A vulnerability in flashcanvas.swf in OpenEMR before 5.0.1 Patch 6 could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack on a targeted system...
CVE-2018-18035
CVE-2018-18035 describes an unauthenticated, remote XSS in the OpenEMR flashcanvas.swf component. The affected software is OpenEMR prior to 5.0.1 Patch 6. The vulnerability arises from an XSS in flashcanvas.swf that could be exploited by an attacker targeting a system using OpenEMR with this vers...