CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4502 – Cross-site Scripting (XSS) - Reflected in openemr/openemr
https://notcve.org/view.php?id=CVE-2022-4502
Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2. Cross-Site Scripting (XSS) Reflejado en el repositorio de GitHub openemr/openemr anterior a 7.0.0.2. • https://github.com/openemr/openemr/commit/37d7ed4855763fc588485f05b2e9cc0944f71879 https://huntr.dev/bounties/5bdef791-6886-4008-b9ba-045cb4524114 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4504 – Improper Input Validation in openemr/openemr
https://notcve.org/view.php?id=CVE-2022-4504
Improper Input Validation in GitHub repository openemr/openemr prior to 7.0.0.2. Validación de entrada incorrecta en el repositorio de GitHub openemr/openemr anterior a 7.0.0.2. • https://github.com/openemr/openemr/commit/37d7ed4855763fc588485f05b2e9cc0944f71879 https://huntr.dev/bounties/f50538cb-99d3-411d-bd1a-5f36d1fa9f5d • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-2824 – Authorization Bypass Through User-Controlled Key in openemr/openemr
https://notcve.org/view.php?id=CVE-2022-2824
Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1. Un Control de Acceso inapropiado en el repositorio de GitHub openemr/openemr versiones anteriores a 7.0.0.1. • https://github.com/openemr/openemr/commit/c5d99452c173ef21a8e2241e2bbf4b66e2d7fe11 https://huntr.dev/bounties/1ccb2d1c-6881-4813-a5bc-1603d29b7141 • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-2734 – Improper Restriction of Rendered UI Layers or Frames in openemr/openemr
https://notcve.org/view.php?id=CVE-2022-2734
Improper Restriction of Rendered UI Layers or Frames in GitHub repository openemr/openemr prior to 7.0.0.1. Una Restricción Inapropiada de Capas o Marcos de Interfaz de Usuario Renderizados en el repositorio de GitHub openemr/openemr versiones anteriores a 7.0.0.1 • https://github.com/openemr/openemr/commit/203243467675e85b8b479c778e44ae1aac8bad55 https://huntr.dev/bounties/d8e4c70c-788b-47e9-8141-a08db751d4e6 • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 1CVE-2022-2732 – Missing Authorization in openemr/openemr
https://notcve.org/view.php?id=CVE-2022-2732
Missing Authorization in GitHub repository openemr/openemr prior to 7.0.0.1. Una Administración inapropiada de Privilegios en el repositorio de GitHub openemr/openemr versiones anteriores a 7.0.0.1 • https://github.com/openemr/openemr/commit/2973592bc7b1f4996738a6fd27d1e277e33676b6 https://huntr.dev/bounties/8773e0d1-5f1a-4e87-8998-f5ec45f6d533 • CWE-862: Missing Authorization •