Security Advisory

CVE-2025-29772

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-31 16:03:32

Last updated 2025-03-31 18:34:56

Assigner GitHub_M

State PUBLISHED

Description

OpenEMR is a free and open source electronic health records and medical practice management application. The POST parameter hidden_subcategory is output to the page without being properly processed. This leads to a reflected cross-site scripting (XSS) vul;nerability in CAMOS new.php. This vulnerability is fixed in 7.0.3.

← Browse all CVEs View on cve.org ↗