CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15141

Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to delete arbitrary files via the "docid" parameter when the mode is set to delete.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.02

EPSS Ranking 83.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 5.5

References

Products affected by CVE-2018-15141

Open-Emr » Openemr » Version: N/A

cpe:2.3:a:open-emr:openemr:-
Open-Emr » Openemr » Version: 2.0.1.2

cpe:2.3:a:open-emr:openemr:2.0.1.2
Open-Emr » Openemr » Version: 2.7

cpe:2.3:a:open-emr:openemr:2.7
Open-Emr » Openemr » Version: 2.7.1

cpe:2.3:a:open-emr:openemr:2.7.1
Open-Emr » Openemr » Version: 2.7.2

cpe:2.3:a:open-emr:openemr:2.7.2
Open-Emr » Openemr » Version: 2.7.3

cpe:2.3:a:open-emr:openemr:2.7.3
Open-Emr » Openemr » Version: 2.8.0

cpe:2.3:a:open-emr:openemr:2.8.0
Open-Emr » Openemr » Version: 2.8.1

cpe:2.3:a:open-emr:openemr:2.8.1
Open-Emr » Openemr » Version: 2.8.2

cpe:2.3:a:open-emr:openemr:2.8.2
Open-Emr » Openemr » Version: 2.8.3

cpe:2.3:a:open-emr:openemr:2.8.3
Open-Emr » Openemr » Version: 2.9.0

cpe:2.3:a:open-emr:openemr:2.9.0
Open-Emr » Openemr » Version: 3.0.0

cpe:2.3:a:open-emr:openemr:3.0.0
Open-Emr » Openemr » Version: 3.0.1

cpe:2.3:a:open-emr:openemr:3.0.1
Open-Emr » Openemr » Version: 3.1.0

cpe:2.3:a:open-emr:openemr:3.1.0
Open-Emr » Openemr » Version: 3.2.0

cpe:2.3:a:open-emr:openemr:3.2.0
Open-Emr » Openemr » Version: 4.0.0

cpe:2.3:a:open-emr:openemr:4.0.0
Open-Emr » Openemr » Version: 4.1.0

cpe:2.3:a:open-emr:openemr:4.1.0
Open-Emr » Openemr » Version: 4.1.1

cpe:2.3:a:open-emr:openemr:4.1.1
Open-Emr » Openemr » Version: 4.1.2

cpe:2.3:a:open-emr:openemr:4.1.2
Open-Emr » Openemr » Version: 4.1.2.3

cpe:2.3:a:open-emr:openemr:4.1.2.3
Open-Emr » Openemr » Version: 4.1.2.6

cpe:2.3:a:open-emr:openemr:4.1.2.6
Open-Emr » Openemr » Version: 4.1.2.7

cpe:2.3:a:open-emr:openemr:4.1.2.7
Open-Emr » Openemr » Version: 4.2.0

cpe:2.3:a:open-emr:openemr:4.2.0
Open-Emr » Openemr » Version: 4.2.0.3

cpe:2.3:a:open-emr:openemr:4.2.0.3
Open-Emr » Openemr » Version: 4.2.1

cpe:2.3:a:open-emr:openemr:4.2.1
Open-Emr » Openemr » Version: 4.2.2

cpe:2.3:a:open-emr:openemr:4.2.2
Open-Emr » Openemr » Version: 5.0.0

cpe:2.3:a:open-emr:openemr:5.0.0
Open-Emr » Openemr » Version: 5.0.0.5

cpe:2.3:a:open-emr:openemr:5.0.0.5
Open-Emr » Openemr » Version: 5.0.0.6

cpe:2.3:a:open-emr:openemr:5.0.0.6
Open-Emr » Openemr » Version: 5.0.1

cpe:2.3:a:open-emr:openemr:5.0.1
Open-Emr » Openemr » Version: 5.0.1-6

cpe:2.3:a:open-emr:openemr:5.0.1-6
Open-Emr » Openemr » Version: 5.0.1.1

cpe:2.3:a:open-emr:openemr:5.0.1.1
Open-Emr » Openemr » Version: 5.0.1.2

cpe:2.3:a:open-emr:openemr:5.0.1.2
Open-Emr » Openemr » Version: 5.0.1.3

cpe:2.3:a:open-emr:openemr:5.0.1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15141

Products

Pricing

Contact Us