← back
CVE-2017-9380

CVE-2017-9380

EPSS 15.2%
OpenEMR 5.0.0 and prior allows low-privilege users to upload files of dangerous types which can result in arbitrary code execution within the context of the vulnerable application.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/163087/OpenEMR-5.0.0-Remote-Shell-Upload.htmlunverifiedexploitdbwww.exploit-db.com/exploits/49983unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/163087/OpenEMR-5.0.0-Remote-Shell-Upload.htmlhttps://github.com/Hacker5preme/Exploits/tree/main/CVE-2017-9380-Exploithttps://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2017-002