2 matches found
CVE-2020-13569
A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 commit babec93f600ff1394f91ccd512bcad85832eb6ce. A specially crafted HTTP request can lead to the execution of arbitrary requests in the context of the victim. An attacker ca...
CVE-2020-13569
CVE-2020-13569 affects OpenEMR’s GACL module. Multiple connected sources confirm a cross-site request forgery vulnerability in OpenEMR 5.0.2 and the development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce) that allows an attacker to trigger arbitrary requests in the victim’s co...