3 matches found
CVE-2021-32103
A Stored XSS vulnerability in interface/usergroup/usergroupadmin.php in OpenEMR before 5.0.2.1 allows a admin authenticated user to inject arbitrary web script or HTML via the lname parameter...
CVE-2021-32103
A Stored XSS vulnerability in interface/usergroup/usergroupadmin.php in OpenEMR before 5.0.2.1 allows a admin authenticated user to inject arbitrary web script or HTML via the lname parameter...
CVE-2021-32103
OpenEMR CVE-2021-32103 is a Stored XSS affecting the interface/usergroup/usergroup_admin.php path in OpenEMR versions prior to 5.0.2.1. An admin-authenticated user could inject arbitrary script/HTML via the lname parameter. The vulnerability arises from improper handling of input in the admin use...