3 matches found
EUVD-2014-5349
Malware in sbrugna...
OpenEMR 4.1.2 forms_admin.php SQL Injection
SQL Injection vulnerability in OpenEMR formsadmin.php id parameter Vulnerability Type: SQL Injection For the exploit source code contact DSquare Security sales team...
CVE-2014-5462
Multiple SQL injection vulnerabilities in OpenEMR 4.1.2 Patch 7 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 layoutid parameter to interface/super/editlayout.php; 2 formpatientid, 3 formdrugname, or 4 formlotnumber parameter to...