Vulnerabilidades em OpenEMR
121 resultadosCVE-2026-24487MEDIUMOpenEMR has FHIR Patient Compartment Bypass in CareTeam ResourceEPSS 0.3%CVE-2026-25124MEDIUMOpenEMR has Broken Access Control in Report/Clients/Message List CSV ExportEPSS 0.3%CVE-2026-25127HIGHOpenEMR has Broken Access Control on Care Coordination ModuleEPSS 0.3%CVE-2026-32126HIGHOpenEMR: Inverted ACL Condition in CDR ControllerRouter Allows Any Authenticated User to Modify/Delete Clinical Rules and PlansEPSS 0.3%CVE-2026-25164HIGHOpenEMR's Document and Insurance REST Endpoints Skip ACLEPSS 0.3%CVE-2026-27943MEDIUMOpenEMR's Eye Exam View Trusts form_id Without Verifying Patient/Encounter OwnershipEPSS 0.3%CVE-2026-25220MEDIUMOpenEMR Messages "Show All" Not Restricted to AdminsEPSS 0.3%CVE-2026-25930MEDIUMOpenEMR's Printable LBF Endpoint Leaks Arbitrary Patient FormsEPSS 0.3%CVE-2026-24896MEDIUMOpenEMR has Broken Access Control that allows unauthorized access to EDI LogsEPSS 0.3%CVE-2026-25929MEDIUMOpenEMR Patient Picture Context Allows Arbitrary Patient Photo RetrievalEPSS 0.3%CVE-2026-32120MEDIUMOpenEMR has IDOR in Fee Sheet Product SaveEPSS 0.3%CVE-2026-32123HIGHOpenEMR: Therapy Group Sensitivity ACL No Longer EnforcedEPSS 0.3%CVE-2025-67491HIGHOpenEMR has Stored XSS in ub04 helperEPSS 0.2%CVE-2026-33918HIGHOpenEMR Missing Authorization on Claim File Download EndpointEPSS 0.2%CVE-2026-33303MEDIUMOpenEMR Vulnerable to Stored XSS via Unescaped portal_login_username in Credential Print ViewEPSS 0.2%CVE-2026-24890HIGHOpenEMR Portal Users Can Forge Provider SignaturesEPSS 0.2%CVE-2025-32967MEDIUMOpenEMR doesn't log password administration properlyEPSS 0.2%CVE-2026-33934MEDIUMOpenEMR's Missing Authorization in show-signature.php Allows Portal Patients to Read Staff SignaturesEPSS 0.2%CVE-2025-67752HIGHOpenEMR Has Disabled SSL Certificate Verification in HTTP ClientEPSS 0.2%CVE-2025-29772HIGHOpenEMR allows Reflected XSS in CAMOS new.phpEPSS 0.2%