2 matches found
OpenEMR 5.0.2 < 6.0.0.1 Multiple XSS Vulnerabilities
OpenEMR is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2021-25919
Summary: CVE-2021-25919 affects OpenEMR 5.0.2–6.0.0 with a Stored XSS vulnerability due to inadequate validation of user input. A highly privileged attacker could inject arbitrary code into input fields when creating a new user, enabling XSS exploitation. Affected software: OpenEMR (versions 5.0....