CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Openmrs: >> Openmrs Module Reporting Security Vulnerabilities

CVE-2017-7990

The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in webapp/reports/manageReports.jsp.

CVSS Score

8.8

EPSS Score

0.001

Published

2017-04-21

Page 1

Vulnerabilities

Vulnerable Software

Openmrs: >> Openmrs Module Reporting Security Vulnerabilities

Products

Pricing

Contact Us