12 matches found
EUVD-2018-8595
Malware in sbrugna...
EUVD-2018-7036
Malware in sbrugna...
EUVD-2018-7026
Malware in sbrugna...
EUVD-2018-7034
Malware in sbrugna...
EUVD-2022-51845
Malicious code in bioql PyPI...
CVE-2019-8371
OpenEMR v5.0.1-6 allows code execution...
CVE-2019-3964
In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the docid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...
CVE-2019-3966
In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreignid parameter. This could allow an attacker to execute arbitrary code in the context of a user's session...
CVE-2025-31121 OpenEMR allows XSS in Patient Image feature
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 7.0.3.1, the Patient Image feature in OpenEMR is vulnerable to cross-site scripting attacks via the EXIF title in an image. This vulnerability is fixed in 7.0.3.1...
CVE-2025-31121
OpenEMR’s Patient Image feature (EXIF title) is vulnerable to cross-site scripting prior to version 7.0.3.1. Affected component: Patient Image handling in OpenEMR. Root cause: unsanitized EXIF title in uploaded images enables XSS. Impact: CVE-2025-31121 indicates attacker-executed script in vulne...
CVE-2025-30161 OpenEMR Stored XSS in OpenEMR Bronchitis Form
OpenEMR is a free and open source electronic health records and medical practice management application. A stored XSS vulnerability in the Bronchitis form component of OpenEMR allows anyone who is able to edit a bronchitis form to steal credentials from administrators. This vulnerability is fixed...
CVE-2025-29789
CVE-2025-29789 – OpenEMR is affected by a Directory Traversal in the Load Code feature prior to version 7.3.0. The issue enables traversal of directories and is mitigated by the 7.3.0 patch referenced in multiple sources. The vulnerability affects OpenEMR’s load code functionality and has been ad...