Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpenEMR allows links sent via Secure Messaging to be opened in OpenEMR and Portal
Vulnerability Description
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 7.0.4, when a link is sent via Secure Messaging, clicking the link opens the website within the OpenEMR/Portal site. This behavior could be exploited for phishing. Version 7.0.4 patches the issue.
CVSS Information
N/A
Vulnerability Type
关键信息的UI错误表达
Vulnerability Title
OpenEMR 安全漏洞
Vulnerability Description
OpenEMR是OpenEMR社区的一套开源的医疗管理系统。该系统可用于医疗实践管理、电子医疗记录、处方书写和医疗帐单申请。 OpenEMR 7.0.4之前版本存在安全漏洞,该漏洞源于通过安全消息发送链接时,点击链接会在OpenEMR/Portal站点内打开网站,可能被用于钓鱼攻击。
CVSS Information
N/A
Vulnerability Type
N/A