VYPR
Unrated severityNVD Advisory· Published Aug 20, 2019· Updated Aug 4, 2024

CVE-2019-3966

CVE-2019-3966

Description

In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreign_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.