3 matches found
CVE-2019-16862
Reflected XSS in interface/forms/eyemag/view.php in OpenEMR 5.x before 5.0.2.1 allows a remote attacker to execute arbitrary code in the context of a user's session via the pid parameter...
CVE-2019-16862
Reflected XSS in interface/forms/eyemag/view.php in OpenEMR 5.x before 5.0.2.1 allows a remote attacker to execute arbitrary code in the context of a user's session via the pid parameter...
CVE-2019-16862
OpenEMR 5.x contains a reflected XSS in interface/forms/eye_mag/view.php via the pid parameter, affecting versions before 5.0.2.1. This allows an attacker to run arbitrary code in a user’s session context. No fixes/patch details are provided in the supplied documents.