Vulnerabilities (CVE)

Filtered by vendor Openmrs Subscribe
Filtered by product Openmrs Module Reporting
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-7990 1 Openmrs 1 Openmrs Module Reporting 2024-11-21 6.8 MEDIUM 8.8 HIGH
The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in webapp/reports/manageReports.jsp.