Vulnerabilities > Open EMR > Openemr > 5.0.1.4

DATE CVE VULNERABILITY TITLE RISK
2018-08-20 CVE-2018-1000218 Cross-site Scripting vulnerability in Open-Emr Openemr 5.0.1.4
OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'file' parameter in line #43 of interface/fax/fax_view.php that can result in The vulnerability could allow remote authenticated attackers to inject arbitrary web script or HTML..
network
low complexity
open-emr CWE-79
5.4
5.4