Vulnerabilities in OpenEMR
121 resultsCVE-2023-2950MEDIUMImproper Authorization in openemr/openemrEPSS 0.6%CVE-2026-24898CRITICALOpenEMR has an Unauthenticated MedEx Token DisclosureEPSS 0.6%CVE-2026-25928MEDIUMOpenEMR Vulnerable to Path Traversal When Zipping DICOM FoldersEPSS 0.5%CVE-2023-2566HIGHCross-site Scripting (XSS) - Stored in openemr/openemrEPSS 0.5%CVE-2022-2494MEDIUMCross-site Scripting (XSS) - Stored in openemr/openemrEPSS 0.5%CVE-2026-24908CRITICALOpenEMR has SQL Injection in Patient API Sort ParameterEPSS 0.5%CVE-2023-2946MEDIUMImproper Access Control in openemr/openemrEPSS 0.5%CVE-2026-29187HIGHOpenEMR Vulnerable to Authenticated Blind Boolean-Based SQL Injection in new_search_popup.phpEPSS 0.5%CVE-2022-2731MEDIUMCross-site Scripting (XSS) - Reflected in openemr/openemrEPSS 0.5%CVE-2023-2944MEDIUMImproper Access Control in openemr/openemrEPSS 0.4%CVE-2026-33917HIGHOpenEMR has SQL Injection in CAMOS FormEPSS 0.4%CVE-2026-33301HIGHOpenEMR has arbitrary image file read via PDF generatorEPSS 0.4%CVE-2026-25146CRITICALOpenEMR's payments gateway_api_key secret rendered into client JS codeEPSS 0.4%CVE-2022-2729MEDIUMCross-site Scripting (XSS) - DOM in openemr/openemrEPSS 0.4%CVE-2023-2945MEDIUMMissing Authorization in openemr/openemrEPSS 0.4%CVE-2026-33910HIGHOpenEMR has a SQL Injection Vulnerability in patient selectionEPSS 0.4%CVE-2026-33914HIGHOpenEMR has SQL Injection in PostCalendar Category DeleteEPSS 0.4%CVE-2026-34053HIGHOpenEMR Missing Authorization in Procedure Order AJAX Deletion HandlerEPSS 0.4%CVE-2025-31117MEDIUMOpenEMR Out-of-Band Server-Side Request Forgery (OOB SSRF) VulnerabilityEPSS 0.4%CVE-2026-24488MEDIUMOpenEMR Vulnerable to Arbitrary File Exfiltration via Fax EndpointEPSS 0.4%