Security Advisory

CVE-2018-10572

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-04-30 17:00:00

Last updated 2024-08-05 07:39:07

Assigner mitre

State PUBLISHED

Description

interface/patient_file/letter.php in OpenEMR before 5.0.1 allows remote authenticated users to bypass intended access restrictions via the newtemplatename and form_body parameters.

← Browse all CVEs View on cve.org ↗