OpenEMR 安全漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions of OpenEMR prior to 8.0.0 contained security...

EUVD-2016-9206

Malware in sbrugna...

EUVD-2024-51986

Malicious code in bioql PyPI...

CVE-2024-53522

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information...

CVE-2024-50593

An attacker with local access to the medical office computer can access restricted functions of the Elefant Service tool by using a hard-coded "Hotline" password in the Elefant service binary, which is shipped with the software...

CVE-2024-53522

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information...

CVE-2024-53522

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information...

CVE-2024-53522

Bangkok Medical Software HOSxP XE v4.64.11.3 was discovered to contain a hardcoded IDEA Key-IV pair in the HOSxPXE4.exe and HOS-WIN32.INI components. This allows attackers to access sensitive information...

CVE-2024-53522

CVE-2024-53522 affects Bangkok Medical Software HOSxP XE v4.64.11.3, with a root cause described as a hardcoded IDEA Key-IV pair in HOSxPXE4.exe and HOS-WIN32.INI components. This leakage enables attackers to access sensitive information. Multiple sources (NVD, Red Hat, CNNVD, CVE listings) confi...

Bangkok Medical Software HOSxP XE 安全特征问题漏洞

Bangkok Medical Software HOSxP XE is a hospital information system software from Bangkok Medical Software, Thailand. A security vulnerability exists in Bangkok Medical Software HOSxP XE version v4.64.11.3, which originates from the inclusion of hardcoding in the HOSxPXE4.exe and HOS-WIN32.INI...

The vulnerability of the software for managing medical organizations, OpenEMR, related to the lack of measures taken to protect the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the software for managing medical organizations like OpenEMR is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

OpenEMR 访问控制错误漏洞

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. An Access Control Error vulnerability exists in versions of OpenEMR prior to...

Medical Software Firm exposes vulnerable children’s sensitive data

By Waqas The data was collected by Tridas eWriter operated by now-defunct Tempa, Florida-based The Tridas Group LLC. This is a post from HackRead.com Read the original post: Medical Software Firm exposes vulnerable childrens sensitive data...

OpenEMR 安全漏洞

OpenEMR is an open source medical management system from the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. An access control error vulnerability exists in OpenEMR version 5.0.2.1, which ste...

SQL Injection Vulnerability in Medical Online Exam System

Ltd. is a high-tech company dedicated to the research, development and sales of software products in the medical science and education industry. SQL injection vulnerability exists in Medical Online Exam System. An attacker can exploit the vulnerability to obtain sensitive information in the...

OpenEMR Cross-Site Scripting Vulnerability

OpenEMR is a medical practice management software that also supports electronic medical records EMR. A stored cross-site scripting vulnerability exists in OpenEMR versions 5.0.2 - 6.0.0. The vulnerability stems from not properly validating user input. An attacker can exploit the vulnerability to...

OpenEMR Cross-Site Scripting Vulnerability (CNVD-2021-22970)

OpenEMR is a medical practice management software that also supports electronic medical records EMR. A stored cross-site scripting vulnerability exists in OpenEMR versions 5.0.2 - 6.0.0. The vulnerability stems from not properly validating user input. An attacker can exploit the vulnerability to...

OpenEMR SQL Injection Vulnerability (CNVD-2021-12108)

OpenEMR is a medical practice management software that also supports electronic medical records EMR. A SQL injection vulnerability exists in interface/main/finder/patientselect.php in OpenEMR versions prior to 5.0.2.5. A remote authenticated attacker can exploit this vulnerability to execute...

Medical software firm leakes personal data of 3.1 million patients

By Zara Khan Somehow, the misconfigured Elasticsearch cluster did not contain medical data of patients. This is a post from HackRead.com Read the original post: Medical software firm leakes personal data of 3.1 million patients...

C4G BLIS Improper Access Control

Computing For Good’s Basic Laboratory Information System also known as C4G BLIS version 3.5 and earlier suffers from an instance of CWE-284, “Improper Access Control.” As a result, an unauthenticated user may alter several facets of a user account, including promoting any user to an administrator...