Unrated severityNVD Advisory· Published Aug 20, 2019· Updated Aug 4, 2024
CVE-2019-3966
CVE-2019-3966
Description
In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreign_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- OpenEMR/OpenEMRdescription
Patches
Vulnerability mechanics
References
1- www.tenable.com/security/research/tra-2019-40mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.