Openclinic Ga Security Vulnerabilities and Issues — Openclinic Ga CVE List

Lucene search

Openclinic Ga ProjectOpenclinic Ga

4 matches found

CVE•added 2024/03/19 1:15 p.m.•62 views

CVE-2023-40279

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to main.do.

7.5CVSS6.7AI score0.13693EPSS

CVE•added 2024/03/19 12:15 p.m.•54 views

CVE-2023-40278

An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has been identified in the printAppointmentPdf.jsp component of OpenClinic GA. By changing the AppointmentUid parameter, an attacker can determine whether a specific appointment exists based on the error mess...

7.5CVSS6.5AI score0.05707EPSS

CVE•added 2020/07/29 1:15 p.m.•35 views

CVE-2020-14489

OpenClinic GA 5.09.02 and 5.89.05b stores passwords using inadequate hashing complexity, which may allow an attacker to recover passwords using known password cracking techniques.

7.5CVSS7AI score0.00113EPSS

CVE•added 2024/03/19 1:15 a.m.•32 views

CVE-2023-40280

An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page parameter in a GET request to popup.jsp.

7.5CVSS6.8AI score0.01104EPSS