Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenClinic version 0.8.2 is affected by a missing authentication vulnerability that allows unauthenticated users to access any patient's medical test results, possibly resulting in disclosure of Protected Health Information (PHI) stored in the application, via a direct request for the /tests/ URI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenClinic GA 授权问题漏洞
Vulnerability Description
OpenClinic GA是一套开源的医院信息管理系统。该系统支持财务管理、临床管理和实验室管理等功能。 OpenClinic 0.8.2版本存在授权问题漏洞,该漏洞源于受到一个缺失的身份验证漏洞的影响,该漏洞允许未经身份验证的用户访问任何患者的医疗测试结果,可能会通过对测试URI的直接请求泄露存储在应用程序中的受保护的健康信息。
CVSS Information
N/A
Vulnerability Type
N/A