RSS   Vulnerabilities for 'Openmrs module reporting'   RSS

2017-04-20
 
CVE-2017-7990

 

 
The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in webapp/reports/manageReports.jsp.

 

 >>> Vendor: Openmrs 5 Products
Openmrs
Openmrs module reporting
Html form entry
Reference application
Openmrs-module-htmlformentry


Copyright 2024, cxsecurity.com

 

Back to Top