2 matches found
OpenMRS Cross-Site Scripting (CVE-2020-5730)
A cross-site scripting vulnerability exists in OpenMRS. Successful exploitation of this vulnerability could allow remote attackers to inject arbitrary web script into the affected system...
CVE-2020-5730
OpenMRS CVE-2020-5730 affects OpenMRS 2.9 and earlier. The vulnerability is a cross-site scripting (XSS) flaw in the login page’s sessionLocation parameter, caused by insufficient input validation. Public sources (NVD entry) describe a MEDIUM severity risk (CVSS v3.1 base score 6.1) with network ...