Filter
AND

Versions

5.0.1.3
7
5.0.2
4
5.0.0
3
5.0.1
3
5.0.2.1
3
4.1.0
2
2.8.1
1
3.1.0
1
3.2.0
1
4.0.0
1
6.0.0
1
6.0.0.1
1
7.0.1
1

OpenEMRStored XSS in openemr/openemr

high
8.1
First published (updated )
CVE-2024-0875

OpenEMRImproper Authorization in openemr/openemr

high
8.1
First published (updated )
CVE-2023-2950

OpenEMRCross-site Scripting (XSS) - Generic in openemr/openemr

high
8.3
First published (updated )
CVE-2023-2948

OpenEMRCross-site Scripting (XSS) - Reflected in openemr/openemr

high
8.3
First published (updated )
CVE-2023-2949

OpenEMRCode Injection in openemr/openemr

high
8.8
First published (updated )
CVE-2023-2943

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OpenEMRImproper Access Control in openemr/openemr

high
8.1
First published (updated )
CVE-2023-2946

OpenEMRImproper Input Validation in openemr/openemr

high
8.1
First published (updated )
CVE-2023-2942

OpenEMRImproper Access Control in openemr/openemr

high
8.8
First published (updated )
CVE-2023-2674

OpenEMRCross-site Scripting (XSS) - Stored in openemr/openemr

high
7.5
First published (updated )
CVE-2023-2566

OpenEMRPath Traversal

high
8.8
First published (updated )
CVE-2023-22973

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OpenEMRPath Traversal

high
7.5
First published (updated )
CVE-2023-22974

OpenEMRCross-site Scripting (XSS) - Reflected in openemr/openemr

high
8.3
First published (updated )
CVE-2022-4615

OpenEMRImproper Access Control in openemr/openemr

high
8.1
First published (updated )
CVE-2022-4567

OpenEMRUnrestricted Upload of File with Dangerous Type in openemr/openemr

high
8.8
First published (updated )
CVE-2022-4506

OpenEMRCross-site Scripting (XSS) - Reflected in openemr/openemr

high
7.3
First published (updated )
CVE-2022-4502

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OpenEMRImproper Input Validation in openemr/openemr

high
7.5
First published (updated )
CVE-2022-4504

OpenEMRAuthorization Bypass Through User-Controlled Key in openemr/openemr

high
8.8
First published (updated )
CVE-2022-4505

OpenEMRAuthorization Bypass Through User-Controlled Key in openemr/openemr

high
8.8
First published (updated )
CVE-2022-2824

OpenEMRMissing Authorization in openemr/openemr

high
8.3
First published (updated )
CVE-2022-2732

OpenEMRData Access from Outside Expected Data Manager Component in openemr/openemr

high
8.3
First published (updated )
CVE-2022-2493

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OpenEMRNon Privilege User can Enable or Disable Registered in openemr/openemr

high
8.1
First published (updated )
CVE-2022-1461

OpenEMRNon-Privilege User Can View Patient’s Disclosures in openemr/openemr

high
8.3
First published (updated )
CVE-2022-1459

OpenEMRStored XSS Leads To Session Hijacking in openemr/openemr

high
7.3
First published (updated )
CVE-2022-1458

OpenEMRStored Cross Site Scripting in openemr/openemr

high
8
First published (updated )
CVE-2022-1181

OpenEMRStored Cross Site Scripting in openemr/openemr

high
7.3
First published (updated )
CVE-2022-1178

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OpenEMRAn Insecure Direct Object Reference (IDOR) vulnerability in OpenEMR 6.0.0 allows any authenticated a…

high
8.1
First published (updated )
CVE-2022-25471

OpenEMRIn OpenEMR, versions 5.0.0 to 6.0.0.1 are vulnerable to weak password requirements as it does not en…

high
8.1
First published (updated )
CVE-2021-25923

OpenEMRThe Patient Portal of OpenEMR 5.0.2.1 is affected by a incorrect access control system in portal/pat…

high
8.2
First published (updated )
CVE-2021-32101

OpenEMRSQL Injection

high
8.8
First published (updated )
CVE-2021-32102

OpenEMRSQL Injection

high
8.8
First published (updated )
CVE-2021-32104

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203