exploitDog

GHSA-vrxh-2fg8-68v6

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Reference vulnerability via which an attacker can read the messages of all users.

OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Reference vulnerability via which an attacker can read the messages of all users.

Ссылки

EPSS

Процентиль: 89%

0.04642

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-532

CWE-639

Связанные уязвимости

CVE-2021-40352

CVSS3: 6.5

nvd

больше 4 лет назад

OpenEMR 6.0.0 has a pnotes_print.php?noteid= Insecure Direct Object Reference vulnerability via which an attacker can read the messages of all users.

EPSS

Процентиль: 89%

0.04642

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-532

CWE-639