CVE-2020-11436

CVE-2020-11436

EPSS 1.3%

LibreHealth EMR v2.0.0 is vulnerable to XSS that results in the ability to force arbitrary actions on behalf of other users including administrators.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://know.bishopfox.com/advisories https://labs.bishopfox.com/advisories/librehealth-version-2.0.0-0 https://librehealth.io/