Total vulnerabilities in the database
Cross-site scripting (XSS) vulnerability in interface/main/onotes/office_comments_full.php in OpenEMR 4.1.1 allows remote attackers to inject arbitrary web script or HTML via the note parameter.
Software | From | Fixed in |
---|---|---|
open-emr / openemr | 4.1.1 | 4.1.1.x |