CVE-2026-27943

OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, the eye exam eyemag view loads data by formid or equivalent without verifying that the form belongs to the current user’s patient/encounter context. An...

CVE-2024-8001

CVE-2024-8001 affects VIWIS LMS 9.11; the Print Handler component has a missing authorization flaw that enables a user with the Learner role to access the entire exam, including solutions, via the administrative print function during an active session before/after an exam. This remote attack is p...

PT-2024-38746 · Viwis Lms · Viwis Lms

Name of the Vulnerable Software and Affected Versions: VIWIS LMS version 9.11 Description: A critical issue was found in the Print Handler component, leading to missing authorization. This allows a user with the role learner to access the entire exam, including solutions, in the web application...

VIWIS LMS 安全漏洞

Viwis LMS is a Learning Management System from Viwis USA. A security vulnerability exists in VIWIS LMS version 9.11 that stems from a missing authorization in the Print Handler component. A user with the Learner role can use the Manage Print function and active sessions to access the entire exam,...