Skip to main content

Openmrs Module Reporting

1 CVEs product

Monthly

CVE-2017-7990 HIGH POC PATCH This Week

The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS CSRF Openmrs Module Reporting
NVD GitHub
CVSS 3.0
8.8
EPSS
0.1%
EPSS 0% CVSS 8.8
HIGH POC PATCH This Week

The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS CSRF Openmrs Module Reporting
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy