Vulnerabilities > Open EMR

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-15	CVE-2022-4504	Improper Input Validation vulnerability in Open-Emr Openemr Improper Input Validation in GitHub repository openemr/openemr prior to 7.0.0.2. network low complexity open-emr CWE-20	7.5
2022-12-15	CVE-2022-4505	Authorization Bypass Through User-Controlled Key vulnerability in Open-Emr Openemr Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.2. network low complexity open-emr CWE-639	4.3
2022-12-15	CVE-2022-4506	Unrestricted Upload of File with Dangerous Type vulnerability in Open-Emr Openemr Unrestricted Upload of File with Dangerous Type in GitHub repository openemr/openemr prior to 7.0.0.2. network low complexity open-emr CWE-434	8.8
2022-08-15	CVE-2022-2824	Authorization Bypass Through User-Controlled Key vulnerability in Open-Emr Openemr Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-639	5.4
2022-08-09	CVE-2022-2734	Improper Restriction of Rendered UI Layers or Frames vulnerability in Open-Emr Openemr Improper Restriction of Rendered UI Layers or Frames in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-1021	5.4
2022-08-09	CVE-2022-2729	Cross-site Scripting vulnerability in Open-Emr Openemr Cross-site Scripting (XSS) - DOM in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-79	5.4
2022-08-09	CVE-2022-2730	Authorization Bypass Through User-Controlled Key vulnerability in Open-Emr Openemr Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-639	6.5
2022-08-09	CVE-2022-2731	Cross-site Scripting vulnerability in Open-Emr Openemr Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-79	6.1
2022-08-09	CVE-2022-2732	Missing Authorization vulnerability in Open-Emr Openemr Missing Authorization in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-862	8.3
2022-08-09	CVE-2022-2733	Cross-site Scripting vulnerability in Open-Emr Openemr Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1. network low complexity open-emr CWE-79	6.1

Vulnerabilities > Open EMR {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Open EMR"}]}

Vulnerabilities > Open EMR