Openmrs Module Reporting Security Vulnerabilities

cve

CVE-2017-7990

The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in webapp/reports/manageReports.jsp.

8.8CVSS

8.7AI Score

0.001EPSS

2017-04-21 12:59 AM