CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

OSV•added 2019/08/20 6:15 p.m.•9 views

CVE-2019-3964

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the docid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

6.1CVSS6.7AI score

Exploits0References1

Prion•added 2019/08/20 6:15 p.m.•11 views

Cross site scripting

4.3CVSS6.3AI score0.21527EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/08/20 5:55 p.m.•10 views

CVE-2019-3964

7.1AI score0.21527EPSS

Exploits1References1

CVE•added 2019/08/20 5:55 p.m.•43 views

CVE-2019-3964

OpenEMR 5.0.1 and earlier are affected by a reflected XSS in controller.php, triggered via the doc_id parameter. The Red Hat, CNVD, CVE, NVD and OSV entries corroborate that this allows an attacker to execute arbitrary code in the context of a user session. Concrete exploit details, affected subv...

6.1CVSS6.6AI score0.21527EPSS

Exploits1References1Affected Software1

NVD•added 2011/11/01 10:55 p.m.•8 views

CVE-2010-4986

SQL injection vulnerability in detail.php in Simple Document Management System SDMS allows remote attackers to execute arbitrary SQL commands via the docid parameter...

7.5CVSS8.4AI score0.0011EPSS

Exploits1References2

Cvelist•added 2011/11/01 10:0 p.m.•15 views

CVE-2010-4986

SQL injection vulnerability in detail.php in Simple Document Management System SDMS allows remote attackers to execute arbitrary SQL commands via the docid parameter...

8.4AI score0.0011EPSS

Exploits1References2

Prion•added 2007/06/27 12:30 a.m.•10 views

Sql injection

SQL injection vulnerability in essentials/minutes/doc.php in eDocStore allows remote attackers to execute arbitrary SQL commands via the docid parameter in an inline action...

7.5CVSS9.1AI score0.00807EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by