CVE-2020-13569

CVE-2020-13569

A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP request can lead to the execution of arbitrary requests in the context of the victim. An attacker can send an HTTP request to trigger this vulnerability.

Source: CVE-2020-13569

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다