Vulnerabilities > Open EMR > Openemr > 6.0.0.2

DATE CVE VULNERABILITY TITLE RISK
2022-03-30 CVE-2022-1178 Unspecified vulnerability in Open-Emr Openemr
Stored Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
network
low complexity
open-emr
5.4
5.4
2022-03-30 CVE-2022-1179 Unspecified vulnerability in Open-Emr Openemr
Non-Privilege User Can Created New Rule and Lead to Stored Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
network
low complexity
open-emr
5.4
5.4
2022-03-30 CVE-2022-1180 Unspecified vulnerability in Open-Emr Openemr
Reflected Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
network
low complexity
open-emr
3.5
3.5
2022-03-30 CVE-2022-1177 Incorrect Authorization vulnerability in Open-Emr Openemr
Accounting User Can Download Patient Reports in openemr in GitHub repository openemr/openemr prior to 6.1.0.
network
low complexity
open-emr CWE-863
4.3
4.3