Lucene search
K

11 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

Openemr-4.1.0 - SQL Injection Vulnerability

No description provided by source. Exploit Title: Openemr-4.1.0 SQL injection Vulnerability Date: 2011/10/18 Author: I2sec-dae jin Oh Software Link: http://sourceforge.net/projects/openemr/files/OpenEMR%20Current/4.1.0/openemr-4.1.0.zip/download Vendor : www.open-emr.com Version: Openemr-4.1.0...

7.1AI score
Exploits0
CVE
CVE
added 2012/09/09 9:0 p.m.43 views

CVE-2012-2115

CVE-2012-2115 affects OpenEMR (interface/login/validateUser.php) where SQL injection via the u parameter allows remote attackers to execute arbitrary SQL commands. Affected: OpenEMR 4.1.0 and possibly earlier. Root cause: unsafely constructed SQL from user input. Impact: partial confidentiality/i...

7.5CVSS8.8AI score0.02149EPSS
Exploits1References10Affected Software1
NVD
NVD
added 2012/02/07 9:55 p.m.22 views

CVE-2012-0992

interface/fax/faxdispatch.php in OpenEMR 4.1.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the file parameter...

8.5CVSS7.2AI score0.03796EPSS
Exploits1References7
Prion
Prion
added 2012/02/07 9:55 p.m.9 views

Code injection

interface/fax/faxdispatch.php in OpenEMR 4.1.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the file parameter...

8.5CVSS7.7AI score0.03796EPSS
Exploits1References7Affected Software1
Prion
Prion
added 2012/02/07 9:55 p.m.14 views

Directory traversal

Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the formname parameter to 1 contrib/acog/printform.php; or 2 loadform.php, 3 viewform.php, or 4 trendform.php in interface/patientfile/encounter...

3.5CVSS6.9AI score0.11261EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2012/02/07 9:0 p.m.31 views

CVE-2012-0992

interface/fax/faxdispatch.php in OpenEMR 4.1.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the file parameter...

7.2AI score0.03796EPSS
Exploits1References7
Cvelist
Cvelist
added 2012/02/07 9:0 p.m.28 views

CVE-2012-0991

Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the formname parameter to 1 contrib/acog/printform.php; or 2 loadform.php, 3 viewform.php, or 4 trendform.php in interface/patientfile/encounter...

6.4AI score0.11261EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2012/02/02 12:0 a.m.23 views

OpenEMR 4.1.0 LFI and Command Injection Vulnerabilities - Active Check

OpenEMR is prone to local file include LFI and command injection vulnerabilities because it fails to properly sanitize user supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

8.5CVSS6.8AI score0.11261EPSS
Exploits2References3
exploitpack
exploitpack
added 2011/10/19 12:0 a.m.11 views

Openemr-4.1.0 - SQL Injection

Openemr-4.1.0 - SQL Injection Exploit Title: Openemr-4.1.0 SQL injection Vulnerability Date: 2011/10/18 Author: I2sec-dae jin Oh Software Link: http://sourceforge.net/projects/openemr/files/OpenEMR%20Current/4.1.0/openemr-4.1.0.zip/download Vendor : www.open-emr.com Version: Openemr-4.1.0 Tested...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/10/19 12:0 a.m.32 views

Openemr 4.1.0 SQL Injection

Exploit Title: Openemr-4.1.0 SQL injection Vulnerability Date: 2011/10/18 Author: I2sec-dae jin Oh Software Link: http://sourceforge.net/projects/openemr/files/OpenEMR%20Current/4.1.0/openemr-4.1.0.zip/download Vendor : www.open-emr.com Version: Openemr-4.1.0 Tested on: Windows 7...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2011/10/19 12:0 a.m.40 views

Openemr-4.1.0 - SQL Injection

Exploit Title: Openemr-4.1.0 SQL injection Vulnerability Date: 2011/10/18 Author: I2sec-dae jin Oh Software Link: http://sourceforge.net/projects/openemr/files/OpenEMR%20Current/4.1.0/openemr-4.1.0.zip/download Vendor : www.open-emr.com Version: Openemr-4.1.0 Tested on: Windows 7...

7AI score
Exploits0
Rows per page
Query Builder