exploitDog

GHSA-fq74-5m7h-m7fv

Опубликовано: 22 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

A Reflected Cross-site scripting (XSS) vulnerability in interface/forms/eye_mag/php/eye_mag_functions.php in OpenEMR < 7.0.0 allows remote authenticated users to inject arbitrary web script or HTML via the REQUEST_URI.

A Reflected Cross-site scripting (XSS) vulnerability in interface/forms/eye_mag/php/eye_mag_functions.php in OpenEMR < 7.0.0 allows remote authenticated users to inject arbitrary web script or HTML via the REQUEST_URI.

Ссылки

EPSS

Процентиль: 27%

0.00094

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-22972

CVSS3: 5.4

nvd

почти 3 года назад

A Reflected Cross-site scripting (XSS) vulnerability in interface/forms/eye_mag/php/eye_mag_functions.php in OpenEMR < 7.0.0 allows remote authenticated users to inject arbitrary web script or HTML via the REQUEST_URI.

EPSS

Процентиль: 27%

0.00094

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79