CVE-2022-25471
N/A
N/A
Summary
An Insecure Direct Object Reference (IDOR) vulnerability in OpenEMR 6.0.0 allows any authenticated attacker to access and modify unauthorized areas via a crafted POST request to /modules/zend_modules/public/Installer/register.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.open-emr.org/
- https://securityforeveryone.com/blog/inactive-post-test/openemr-0-day-idor-vulnerability
- https://github.com/openemr/openemr
References
- https://www.open-emr.org/
- https://securityforeveryone.com/blog/inactive-post-test/openemr-0-day-idor-vulnerability
- https://github.com/openemr/openemr
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.