Vulnerabilities > Open EMR

DATE CVE VULNERABILITY TITLE RISK
2023-05-28 CVE-2023-2948 Cross-site Scripting vulnerability in Open-Emr Openemr
Cross-site Scripting (XSS) - Generic in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-79
6.1
2023-05-28 CVE-2023-2949 Cross-site Scripting vulnerability in Open-Emr Openemr
Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-79
6.1
2023-05-28 CVE-2023-2950 Improper Authorization vulnerability in Open-Emr Openemr
Improper Authorization in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-285
8.1
2023-05-27 CVE-2023-2946 Improper Access Control vulnerability in Open-Emr Openemr
Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-284
8.1
2023-05-27 CVE-2023-2947 Cross-site Scripting vulnerability in Open-Emr Openemr
Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-79
4.8
2023-05-27 CVE-2023-2942 Improper Input Validation vulnerability in Open-Emr Openemr
Improper Input Validation in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-20
8.1
2023-05-27 CVE-2023-2943 Code Injection vulnerability in Open-Emr Openemr
Code Injection in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-94
8.8
2023-05-27 CVE-2023-2944 Improper Access Control vulnerability in Open-Emr Openemr
Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-284
5.4
2023-05-27 CVE-2023-2945 Missing Authorization vulnerability in Open-Emr Openemr
Missing Authorization in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-862
5.4
2023-05-12 CVE-2023-2674 Improper Access Control vulnerability in Open-Emr Openemr
Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-284
4.3