CVE-2021-32101
The CVE-2021-32101 entry concerns OpenEMR 5.0.2.1’s Patient Portal, where an incorrect access control in portal/patient/_machine_config.php allows an unauthenticated attacker to register an account and bypass the portal API’s permission checks, enabling manipulation and reading of data for any re...