๐Ÿ” CVE Alert

CVE-2023-2947

MEDIUM 4.7

Cross-site Scripting (XSS) - Stored in openemr/openemr

CVSS Score
4.7
EPSS Score
0.0%
EPSS Percentile
0th

Cross-site Scripting (XSS) - Stored in GitHub repository openemr/openemr prior to 7.0.1.

CWE CWE-79
Vendor openemr
Product openemr/openemr
Published May 27, 2023
Last Updated Jan 14, 2025
Stay Ahead of the Next One

Get instant alerts for openemr openemr/openemr

Be the first to know when new medium vulnerabilities affecting openemr openemr/openemr are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

Affected Versions

openemr / openemr/openemr
unspecified < 7.0.1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
huntr.dev: https://huntr.dev/bounties/52534def-acab-4200-a79a-89ef4ce6a0b0 github.com: https://github.com/openemr/openemr/commit/8d2d601ac40aca75bcd2c3cf193f59c8e56d8425