CVE-2020-24621
The CVE concerns OpenMRS htmlformentry module prior to version 3.11.0. A path traversal flaw could allow writing a malicious Velocity Template Language file to a directory, which could then be accessed and executed, enabling remote code execution. Affected component: htmlformentry module in OpenM...