exploitDog

CVE-2025-31121

Опубликовано: 01 апр. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 7.0.3.1, the Patient Image feature in OpenEMR is vulnerable to cross-site scripting attacks via the EXIF title in an image. This vulnerability is fixed in 7.0.3.1.

Ссылки

https://github.com/openemr/openemr/security/advisories/GHSA-2w94-qmj6-3qxx
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:open-emr:openemr:*:*:*:*:*:*:*:*

Версия до 7.0.3.1 (исключая)

EPSS

Процентиль: 61%

0.0041

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79

EPSS

Процентиль: 61%

0.0041

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79