← volver
CVE-2022-1179

Non-Privilege User Can Created New Rule and Lead to Stored Cross Site Scripting in openemr/openemr

CVSS 4.6 MEDIUMEPSS 76.9%CWE-79
Non-Privilege User Can Created New Rule and Lead to Stored Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Productos afectados
openemr · openemr/openemr

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/openemr/openemr/commit/347ad614507183035d188ba14427bc162419778chttps://huntr.dev/bounties/8025e31f-7dcf-4db9-ab07-06c1e055ab42