Vulnerabilities > Openmrs > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-27 | CVE-2020-36635 | Cross-site Scripting vulnerability in Openmrs Appointment Scheduling Module A vulnerability was found in OpenMRS Appointment Scheduling Module up to 1.12.x. | 5.4 |
| 2022-12-27 | CVE-2020-36636 | Unspecified vulnerability in Openmrs Admin UI Module A vulnerability classified as problematic has been found in OpenMRS Admin UI Module up to 1.4.x. | 6.1 |
| 2022-12-27 | CVE-2021-4291 | Unspecified vulnerability in Openmrs Admin UI Module 1.5.0 A vulnerability was found in OpenMRS Admin UI Module up to 1.5.x. | 6.1 |
| 2022-12-27 | CVE-2021-4292 | Unspecified vulnerability in Openmrs Admin UI Module A vulnerability was found in OpenMRS Admin UI Module up to 1.4.x. | 6.1 |
| 2022-12-27 | CVE-2022-4727 | Cross-site Scripting vulnerability in Openmrs Appointment Scheduling Module A vulnerability, which was classified as problematic, was found in OpenMRS Appointment Scheduling Module up to 1.16.x. | 6.1 |
| 2022-12-27 | CVE-2021-4288 | Unspecified vulnerability in Openmrs Reference Application A vulnerability was found in OpenMRS openmrs-module-referenceapplication up to 2.11.x. | 6.1 |
| 2022-12-27 | CVE-2021-4289 | Unspecified vulnerability in Openmrs Reference Application A vulnerability classified as problematic was found in OpenMRS openmrs-module-referenceapplication up to 2.11.x. | 6.1 |
| 2022-12-27 | CVE-2021-4284 | Unspecified vulnerability in Openmrs Htmlformentryui A vulnerability classified as problematic has been found in OpenMRS HTML Form Entry UI Framework Integration Module up to 1.x. | 6.1 |
| 2020-04-17 | CVE-2020-5733 | Open Redirect vulnerability in Openmrs In OpenMRS 2.9 and prior, the export functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user attempts to access it. | 6.1 |
| 2020-04-17 | CVE-2020-5732 | Open Redirect vulnerability in Openmrs In OpenMRS 2.9 and prior, he import functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user attempts to access it. | 6.1 |