CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

NVD•added 2022/03/30 12:15 p.m.•12 views

CVE-2022-1179

Non-Privilege User Can Created New Rule and Lead to Stored Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4...

5.4CVSS0.30561EPSS

Exploits2References2

Huntr•added 2022/03/28 6:1 a.m.•28 views

Non Privilege User can Enable or Disable Registered

Vulnerability Type Insecure Direct Object Reference Affected URL https://localhost/openemr-6.0.0/interface/modules/zendmodules/public/Installer/manage Affected Parameters “modAction=enabled” Authentication Required? Yes Issue Summary Non-privilege users accounting & front-office can disable and...

4CVSS0.3AI score0.01648EPSS

Exploits2References1

Huntr•added 2022/03/21 3:43 a.m.•30 views

Non-Privilege User Can Created New Rule and Lead to Stored Cross Site Scripting

Vulnerability Type Stored Cross Site-Scripting XSS Affected URL https://localhost/openemr-6.0.0/ /interface/super/rules/index.php?action=edit!submitsummary Affected Parameters “fldtitle” Authentication Required? Yes Issue Summary Non-privilege users accounting, front-office can create new rule an...

3.5CVSS0.30561EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by