2019-10-21 00:16:21
mitre
PUBLISHED
Reflected XSS in interface/forms/eye_mag/view.php in OpenEMR 5.x before 5.0.2.1 allows a remote attacker to execute arbitrary code in the context of a users session via the pid parameter.