Lucene search
K

4 matches found

OSV
OSV
added 2026/01/20 3:16 p.m.4 views

CVE-2025-46270

A reflected cross-site scripting xss vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

5.4CVSS5.9AI score0.00286EPSS
Exploits1References2
NVD
NVD
added 2026/01/20 3:16 p.m.6 views

CVE-2025-46270

A reflected cross-site scripting xss vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS0.00286EPSS
Exploits1References2
CVE
CVE
added 2026/01/20 2:50 p.m.13 views

CVE-2025-46270

Talos reports MedDream PACS Premium 7.3.6.870 contains a post-authenticated reflected XSS in Pacs/fetchPriorStudies.php, triggered by a crafted uid URL parameter. The vulnerability can cause arbitrary JavaScript execution in the attacker’s browser when the vulnerable page outputs unsanitized uid ...

6.1CVSS5.6AI score0.00286EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.6 views

MedDream PACS Premium security vulnerability

MedDream PACS Premium is an enterprise-level image storage and management server suite developed by MedDream Corporation. Version 7.3.6.870 of MedDream PACS Premium contains a security vulnerability caused by a reflective cross-site scripting vulnerability in the fetchPriorStudies function, which...

6.1CVSS5.9AI score0.00286EPSS
Exploits1References1
Rows per page
Query Builder