CVE-2017-12795

OpenMRS openmrs-module-htmlformentry 3.3.2 is affected by: Improper Input Validation...

PT-2025-23187 · Openmrs · Openmrs-Module-Fhir2

Name of the Vulnerable Software and Affected Versions: openmrs-module-fhir2 versions prior to 2.5.0 Description: The issue concerns the openmrs-module-fhir2, which provides the FHIR REST API and related services for OpenMRS, an open medical records system. In versions prior to 2.5.0, privileges...

CVE-2021-4289

CVE-2021-4289 affects OpenMRS openmrs-module-referenceapplication up to version 2.11.x. The vulnerability lies in the post function of UserAppPageController.java (parameter AppId) enabling cross-site scripting and can be exploited remotely. A fix is available in OpenMRS referenceapplication 2.12....

CVE-2021-4288

The CVE-2021-4288 issue affects OpenMRS OpenMRS module referenceapplication up to version 2.11.x, with cross-site scripting stemming from how omod/src/main/webapp/pages/userApp.gsp is handled. The vulnerability can be exploited remotely, and upgrading to version 2.12.0 addresses the issue (patch:...

OpenMRS 跨站脚本漏洞

OpenMRS is an open source electronic medical record system from OpenMRS, Inc. in the United States. OpenMRS openmrs-module-referenceapplication A cross-site scripting vulnerability exists in OpenMRS openmrs-module-referenceapplication versions prior to 2.12.0, which originates in the component Us...

OpenMRS 跨站脚本漏洞

OpenMRS is an open source electronic medical record system from OpenMRS, Inc. A cross-site scripting vulnerability exists in OpenMRS openmrs-module-htmlformentryui versions prior to 2.0.0, which stems from an unknown portion of the Single-Input UI Framework Integration Module, where manipulation...

CVE-2017-12795

CVE-2017-12795 affects OpenMRS OpenMRS module-htmlformentry 3.3.2 with an improper input validation vulnerability. Root cause and exact vulnerable component are not elaborated beyond the module name; impact is described generally as a validation error, with CVSS indicating high to critical severi...