CVE-2021-25921

Posted on 2021년 3월 23일2021년 3월 23일 by admin

CVE-2021-25921

In OpenEMR, versions 2.7.3-rc1 to 6.0.0 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly in the `Allergies` section. An attacker could lure an admin to enter a malicious payload and by that initiate the exploit.

Source: CVE-2021-25921

답글 남기기 응답 취소