CVE-2019-3966
OpenEMR 5.0.1 and earlier is affected by a reflected XSS vulnerability in controller.php (parameter: foreign_id). The issue could allow an attacker to execute arbitrary code in the context of a user’s session. The provided documents do not include patch versions, fixes, or mitigations. No exploit...