The vulnerability of the phpgacl/acl_admin.tpl template in the PHP library for managing access in web applications. This is part of the phpGACL system used for managing medical documentation in OpenEMR. It allows attackers to perform cross-site scripting attacks.

The vulnerability of the phpgacl/acladmin.tpl template in the PHP library for managing access in web applications is related to the lack of protective measures taken when processing the action template parameters. Exploiting this vulnerability allows a remote attacker to perform cross-site...

PT-2021-9639 · Phpgacl +1 · Phpgacl +1

Name of the Vulnerable Software and Affected Versions: phpGACL version 3.3.7 OpenEMR version 5.0.2 OpenEMR development version 6.0.0 commit babec93f600ff1394f91ccd512bcad85832eb6ce Description: An open redirect issue exists in the return page redirection functionality. A specially crafted HTTP...

OpenEMR 2.8.1 - srcdir Multiple Remote File Inclusions

OpenEMR 2.8.1 - srcdir Multiple Remote File Inclusions \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV60$2006 ----------------------------------------------------------------------------------------------- ECHOADV60$2006 OpenEMR =2.8.1 Multiple Remote File...