OpenEMR 漏洞列表

OpenEMR default admin credentials were discovered. FOFA: app="OpenEMR" SHODAN: http.html:"OpenEMR"

OpenEMR Product Registration panel was detected. FOFA: app="OpenEMR" SHOAN: http.html:"OpenEMR"

Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow remote authenticated users to read arbitrary files via a .. (dot dot) in the formname parameter to (1) contrib/acog/print_form.php; or (2) load_form.php, (3) view_form.php, or (4) trend_form.php in interface/patient_file/encounter.

OpenEMR before 5.0.2 is vulnerable to local file inclusion via the fileName parameter in custom/ajax_download.php. An attacker can download any file (that is readable by the web server user) from server storage. If the requested file is writable for the web server user and the directory /var/www/openemr/sites/default/documents/cqm_qrda/ exists, the file will be deleted from server.

Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1.

Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.1.

Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.1.

OpenEMR存在反射型跨站脚本漏洞。此漏洞是由于对fee_sheet_options_ajax.php站点的输入数据验证不正确导致的。