CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2025-43860 – OpemRMS Vulnerable to Stored XSS Attack in the Additional Address Section of Patient Demographics
https://notcve.org/view.php?id=CVE-2025-43860
23 May 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. A stored cross-site scripting (XSS) vulnerability in versions prior to 7.0.3.4 allows any authenticated user with patient creation and editing privileges to inject arbitrary JavaScript code into the system by entering malicious payloads in the (1) Text Box fields of Address, Address Line 2, Postal Code and City fields and (2) Drop Down menu options of Address Use, State and Country of the Additional Addr... • https://github.com/openemr/openemr/security/advisories/GHSA-2h9p-7vmc-wmqv • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-32967 – OpenEMR doesn't log password administration properly
https://notcve.org/view.php?id=CVE-2025-32967
23 May 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. A logging oversight in versions prior to 7.0.3.4 allows password change events to go unrecorded on the client-side log viewer, preventing administrators from auditing critical actions. This weakens traceability and opens the system to undetectable misuse by insiders or attackers. Version 7.0.3.4 contains a patch for the issue. • https://github.com/openemr/openemr/security/advisories/GHSA-7qj6-jxfc-xw4v • CWE-778: Insufficient Logging •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2025-32794 – OpenEMR Stored XSS via Patient Name Field in Procedure Orders
https://notcve.org/view.php?id=CVE-2025-32794
23 May 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. A stored cross-site scripting (XSS) vulnerability in versions prior to 7.0.3.4 allows any authenticated user with patient creation privileges to inject arbitrary JavaScript code into the system by entering malicious payloads in the First and Last Name fields during patient registration. This code is later executed when viewing the patient's encounter under Orders → Procedure Orders. Version 7.0.3.4 conta... • https://github.com/openemr/openemr/security/advisories/GHSA-3c27-2m7h-f7rx • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31121 – OpenEMR allows XSS in Patient Image feature
https://notcve.org/view.php?id=CVE-2025-31121
01 Apr 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 7.0.3.1, the Patient Image feature in OpenEMR is vulnerable to cross-site scripting attacks via the EXIF title in an image. This vulnerability is fixed in 7.0.3.1. • https://github.com/openemr/openemr/security/advisories/GHSA-2w94-qmj6-3qxx • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-31117 – OpenEMR Out-of-Band Server-Side Request Forgery (OOB SSRF) Vulnerability
https://notcve.org/view.php?id=CVE-2025-31117
31 Mar 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. An Out-of-Band Server-Side Request Forgery (OOB SSRF) vulnerability was identified in OpenEMR, allowing an attacker to force the server to make unauthorized requests to external or internal resources. this attack does not return a direct response but can be exploited through DNS or HTTP interactions to exfiltrate sensitive information. This vulnerability is fixed in 7.0.3.1. • https://github.com/openemr/openemr/commit/aa6f50efb2971285633fa77ea7a50949408cab12 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30161 – OpenEMR Stored XSS in OpenEMR Bronchitis Form
https://notcve.org/view.php?id=CVE-2025-30161
31 Mar 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. A stored XSS vulnerability in the Bronchitis form component of OpenEMR allows anyone who is able to edit a bronchitis form to steal credentials from administrators. This vulnerability is fixed in 7.0.3. • https://github.com/openemr/openemr/blob/17ca5539bafcdc25a9042ebc14480552e07867e4/interface/forms/bronchitis/view.php#L102-L103 • CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-30149 – OpenEMR Reflected XSS in AJAX Script
https://notcve.org/view.php?id=CVE-2025-30149
31 Mar 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. OpenEMR allows reflected cross-site scripting (XSS) in the AJAX Script interface\super\layout_listitems_ajax.php via the target parameter. This vulnerability is fixed in 7.0.3. • https://github.com/openemr/openemr/commit/6cb70595f65decfbdd03e70b49acc414e03744b8 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-29772 – OpenEMR allows Reflected XSS in CAMOS new.php
https://notcve.org/view.php?id=CVE-2025-29772
31 Mar 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. The POST parameter hidden_subcategory is output to the page without being properly processed. This leads to a reflected cross-site scripting (XSS) vul;nerability in CAMOS new.php. This vulnerability is fixed in 7.0.3. • https://github.com/openemr/openemr/commit/17c5c424695de50db94f2c01fb9abfc441d09a1a • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-29789 – OpenEMR Has Directory Traversal in Load Code feature
https://notcve.org/view.php?id=CVE-2025-29789
25 Mar 2025 — OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 7.3.0 are vulnerable to Directory Traversal in the Load Code feature. Version 7.3.0 contains a patch for the issue. • https://github.com/openemr/openemr/commit/ef3bb7f84ebe8ef54d55416e587ec2fefd065489 • CWE-23: Relative Path Traversal •
CVSS: 8.3EPSS: 83%CPEs: 1EXPL: 1CVE-2023-2948 – Cross-site Scripting (XSS) - Generic in openemr/openemr
https://notcve.org/view.php?id=CVE-2023-2948
28 May 2023 — Cross-site Scripting (XSS) - Generic in GitHub repository openemr/openemr prior to 7.0.1. • https://github.com/openemr/openemr/commit/af1ecf78d1342519791bda9d3079e88f7d859015 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •