Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/03/27 4:59 a.m.3 views

CVE-2026-33914

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, the PostCalendar module contains a blind SQL injection vulnerability in the categoriesUpdate administrative function. The dels POST parameter is read via...

7.2CVSS5.9AI score0.00425EPSS
Exploits1References1
NVD
NVD
added 2026/03/26 12:16 a.m.4 views

CVE-2026-33914

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, the PostCalendar module contains a blind SQL injection vulnerability in the categoriesUpdate administrative function. The dels POST parameter is read via...

7.2CVSS0.00425EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/25 11:13 p.m.26 views

CVE-2026-33914 OpenEMR has SQL Injection in PostCalendar Category Delete

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, the PostCalendar module contains a blind SQL injection vulnerability in the categoriesUpdate administrative function. The dels POST parameter is read via...

7.2CVSS0.00425EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/25 11:13 p.m.3 views

CVE-2026-33914

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, the PostCalendar module contains a blind SQL injection vulnerability in the categoriesUpdate administrative function. The dels POST parameter is read via...

7.2CVSS5.9AI score0.00425EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/25 11:13 p.m.8 views

CVE-2026-33914 OpenEMR has SQL Injection in PostCalendar Category Delete

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, the PostCalendar module contains a blind SQL injection vulnerability in the categoriesUpdate administrative function. The dels POST parameter is read via...

7.2CVSS5.9AI score0.00425EPSS
Exploits1References3
CVE
CVE
added 2026/03/25 11:13 p.m.17 views

CVE-2026-33914

OpenEMR (prior to 8.0.0.3) contains a blind SQL injection in the PostCalendar categoriesUpdate function. The malsicious code uses the dels POST parameter, which is read via pnVarCleanFromInput() (HTML tags stripped only) and directly interpolated into a raw SQL DELETE statement executed by Doctri...

7.2CVSS5.9AI score0.00425EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/03/25 11:13 p.m.5 views

CVE-2026-33914 OpenEMR has SQL Injection in PostCalendar Category Delete

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, the PostCalendar module contains a blind SQL injection vulnerability in the categoriesUpdate administrative function. The dels POST parameter is read via...

7.2CVSS6AI score0.00425EPSS
Exploits1References5
Rows per page
Query Builder