A vulnerability classified as problematic has been found in OpenClinic 5.247.01. This affects an unknown part of the file _common/search/searchByAjax/patientslistShow.jsp. The manipulation of the argument findFirstname leads to information disclosure.
This vulnerability is uniquely identified as CVE-2023-40275. The attack needs to be approached within the local network. There is no exploit available.