cve/CVE-2019-3966.md at 9ac4b787af2fa0b7575b28040edee6199ce9a667

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 09:12:08 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreign_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session.

POC

Reference

https://www.tenable.com/security/research/tra-2019-40

Github

No PoCs found on GitHub currently.

698 B Raw Blame History

CVE-2019-3966

Description

POC

Reference

Github

698 B

Raw Blame History