CVE-2026-33909 | OpenEMR up to 8.0.0.2 MedEx Recall sql injection (GHSA-6vx2-w9hw-prqj)

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability labeled as critical has been found in OpenEMR. This impacts an unknown function of the component MedEx Recall. The manipulation results in sql injection.

This vulnerability was named CVE-2026-33909. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2026-33909 | OpenEMR up to 8.0.0.2 MedEx Recall sql injection (GHSA-6vx2-w9hw-prqj)

Post correlati

CVE-2023-4553 | OpenText AppBuilder up to 23.1 Configuration File information disclosure

CVE-2024-8497 | Franklin Fueling Systems TS-550 EVO Automatic Tank Gauge prior 2.26.4.8967 absolute path traversal (icsa-24-268-03)

CVE-2024-25865 | hexo-theme-anzhiyu 1.6.12 Algolia Search cross site scripting (Issue 200)

CVE-2024-53065 | Linux Kernel up to 6.11.7 slab kmalloc state issue (1b47f9febf48/9c9201afebea)