CVE-2024-0875 | OpenEMR up to 7.0.2.0 Secure Messaging inputBody cross site scripting

Posted by Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability classified as problematic was found in OpenEMR up to 7.0.2.0. Affected by this vulnerability is an unknown functionality of the component Secure Messaging. The manipulation of the argument inputBody leads to cross site scripting.

This vulnerability is known as CVE-2024-0875. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0875 | OpenEMR up to 7.0.2.0 Secure Messaging inputBody cross site scripting

Related Posts

CVE-2024-41675 | ckan up to 2.10.4 datatables_view cross site scripting (GHSA-r3jc-vhf4-6v32)

CVE-2024-2073 | SourceCodester Block Inserter for Dynamic Content 1.0 view_post.php id sql injection

CVE-2023-27150 | openCRX 5.2.0 Manage Activity Name cross site scripting

CVE-2024-31218 | Webhood up to 0.9.0 Backend Container /api/admins missing authentication (GHSA-h533-rxhm-73j2)