CVE-2025-30161 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

OpenEMR is a free and open source electronic health records and medical practice management application. A stored XSS vulnerability in the Bronchitis form compo…
High CVSS: 8.4

CVE-2025-30161

OpenEMR is a free and open source electronic health records and medical practice management application. A stored XSS vulnerability in the Bronchitis form component of OpenEMR allows anyone who is able to edit a bronchitis form to steal credentials from administrators. This vulnerability is fixed in 7.0.3.
Vendor
Open-emr
Product
Openemr
CWE
CWE-80
Yayın Tarihi
2025-03-31 16:15:25
Güncelleme
2025-05-13 13:36:27
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-80 Openemr HIGH Open-emr 2025

Referanslar

https://github.com/openemr/openemr/blob/17ca5539bafcdc25a9042ebc14480552e07867e4/interface/forms/bronchitis/view.php#L102-L103 https://github.com/openemr/openemr/blob/17ca5539bafcdc25a9042ebc14480552e07867e4/interface/forms/bronchitis/view.php#L303-L304 https://github.com/openemr/openemr/security/advisories/GHSA-59rv-645x-rg6p