Vulnerabilities > Openclinic Project > Openclinic > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-03 | CVE-2020-28938 | Cross-site Scripting vulnerability in Openclinic Project Openclinic 0.8.2 OpenClinic version 0.8.2 is affected by a stored XSS vulnerability in lib/Check.php that allows users of the application to force actions on behalf of other users. | 5.4 |