Lucene search
K

6 matches found

EUVD
EUVD
added 2026/06/10 12:31 a.m.11 views

EUVD-2026-35842

OpenClinic GA 5.351.19 contains a reflected cross-site scripting vulnerability in the DICOM image upload handler that allows attackers to execute arbitrary JavaScript in a victim's browser by embedding malicious payloads in DICOM file metadata fields. Attackers can craft a DICOM file with...

6.1CVSS5.6AI score0.00293EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.17 views

PT-2026-48279

Name of the Vulnerable Software and Affected Versions OpenClinic GA version 5.351.19 Description A reflected cross-site scripting issue exists in the DICOM image upload handler. Attackers can execute arbitrary JavaScript in a victim's browser by embedding malicious payloads in DICOM file metadata...

6.1CVSS6.7AI score0.00293EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/01/09 12:30 p.m.4 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp...

7.5CVSS6.8AI score0.00848EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/03/19 12:0 a.m.23 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp...

6.7AI score0.00848EPSS
Exploits1References2
CVE
CVE
added 2024/03/19 12:0 a.m.48 views

CVE-2023-40280

OpenClinic GA 5.247.01 is affected by CVE-2023-40280 due to a directory path traversal via the Page parameter in a GET request to popup.jsp. The issue is described consistently across sources (NVD/Red Hat/CNNVD/CVE List), with an attack vector described as network-accessible and a high impact in ...

7.5CVSS6.8AI score0.00848EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/18 12:0 a.m.4 views

PT-2024-12883 · Unknown · Openclinic Ga

Name of the Vulnerable Software and Affected Versions: OpenClinic GA version 5.247.01 Description: An issue was discovered in OpenClinic GA, allowing an attacker to perform a directory path traversal via the Page parameter in a GET request to "popup.jsp". Recommendations: For OpenClinic GA versio...

7.5CVSS7AI score0.00848EPSS
Exploits1References7
Rows per page
Query Builder