Vulnerabilities > Openmrs > Openmrs Module Reporting

DATE CVE VULNERABILITY TITLE RISK
2017-04-21 CVE-2017-7990 Cross-Site Request Forgery (CSRF) vulnerability in Openmrs Module Reporting 1.12.0
The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in webapp/reports/manageReports.jsp.
network
openmrs CWE-352
6.8