Lucene search
K

10 matches found

OSV
OSV
added 2021/01/20 1:15 a.m.11 views

CVE-2020-19364

OpenEMR 5.0.1 allows an authenticated attacker to upload and execute malicious PHP scripts through /controller.php...

8.8CVSS7AI score
Exploits0References1
Prion
Prion
added 2021/01/20 1:15 a.m.18 views

Design/Logic Flaw

OpenEMR 5.0.1 allows an authenticated attacker to upload and execute malicious PHP scripts through /controller.php...

6.5CVSS8.7AI score0.70575EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/20 12:44 a.m.57 views

CVE-2020-19364

OpenEMR 5.0.1 allows an authenticated attacker to upload and execute malicious PHP scripts through /controller.php...

8.8AI score0.70575EPSS
Exploits1References1
NVD
NVD
added 2019/08/20 6:15 p.m.16 views

CVE-2019-3966

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreignid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

6.1CVSS6.4AI score0.01305EPSS
Exploits1References1
NVD
NVD
added 2019/08/20 6:15 p.m.14 views

CVE-2019-3964

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the docid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

6.1CVSS6.4AI score0.5353EPSS
Exploits1References1
NVD
NVD
added 2019/08/20 6:15 p.m.17 views

CVE-2019-3963

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the patientid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

6.1CVSS6.4AI score0.53748EPSS
Exploits1References1
OSV
OSV
added 2019/08/20 6:15 p.m.14 views

CVE-2019-3964

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the docid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

6.1CVSS6.7AI score
Exploits0References1
Cvelist
Cvelist
added 2019/08/20 5:56 p.m.20 views

CVE-2019-3966

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreignid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

7.1AI score0.01305EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/08/20 5:56 p.m.22 views

CVE-2019-3965

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the documentid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...

7.1AI score0.01305EPSS
Exploits1References1
CNVD
CNVD
added 2017/11/25 12:0 a.m.4 views

OpenEMR Elevation of Privilege Vulnerability

OpenEMR is an open source medical management system maintained by the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. An elevation of privilege vulnerability exists in OpenEMR 5.0.1-dev and...

8.1CVSS6.9AI score0.00697EPSS
Exploits0References1
Rows per page
Query Builder