7 matches found
EUVD-2022-24764
Malicious code in bioql PyPI...
CVE-2022-1459
Non-Privilege User Can View Patient’s Disclosures in GitHub repository openemr/openemr prior to 6.1.0.1...
OpenEMR < 6.1.0.1 Multiple Vulnerabilities
OpenEMR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:open-emr:openemr"; ifdescription...
CVE-2022-1459
Non-Privilege User Can View Patient’s Disclosures in GitHub repository openemr/openemr prior to 6.1.0.1...
CVE-2022-1459
Non-Privilege User Can View Patient’s Disclosures in GitHub repository openemr/openemr prior to 6.1.0.1...
Design/Logic Flaw
Non-Privilege User Can View Patient’s Disclosures in GitHub repository openemr/openemr prior to 6.1.0.1...
CVE-2022-1459
CVE-2022-1459 affects OpenEMR prior to 6.1.0.1. The issue is an Insecure Direct Object Reference that allows a non-privilege user to view patient disclosures via the OpenEMR web interface (example endpoint: interface/patient_file/summary/record_disclosure.php?editlid=…). This exposes confidential...