Vulnerability CVE-2023-2949


Published: 2023-05-28

Description:
Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.1.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.dev/bounties/3842486f-38b1-4150-9f78-b81d0ae580c4
https://github.com/openemr/openemr/commit/af1ecf78d1342519791bda9d3079e88f7d859015

Copyright 2026, cxsecurity.com

 

Back to Top