Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

OpenEMR — Vulnerabilities & Security Advisories 99

All 99 CVE vulnerabilities found in OpenEMR, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2026-25928 OpenEMR Vulnerable to Path Traversal When Zipping DICOM Folders CWE-22 6.5 Medium2026-03-19
CVE-2026-25744 OpenEMR: POST /api/.../vital Accepts Attacker-Supplied id and Overwrites Arbitrary Vitals CWE-639 6.5 Medium2026-03-19
CVE-2026-25745 OpenEMR's Message Update Ignores Patient id CWE-639 6.5 Medium2026-03-18
CVE-2026-32127 SQL Injection Vulnerability in ajax graphs library (OpenEMR) CWE-89 8.8 High2026-03-11
CVE-2026-32126 OpenEMR: Inverted ACL Condition in CDR ControllerRouter Allows Any Authenticated User to Modify/Delete Clinical Rules and Plans CWE-862 7.1 High2026-03-11
CVE-2026-32125 OpenEMR: Stored XSS in Track Anything Graphs via Unescaped Dygraph Titles/Labels CWE-79 5.4 Medium2026-03-11
CVE-2026-32124 OpenEMR: Dynamic Code Picker Renders Unescaped Descriptions (Stored XSS) CWE-79 5.4 Medium2026-03-11
CVE-2026-32123 OpenEMR: Therapy Group Sensitivity ACL No Longer Enforced CWE-863 7.7 High2026-03-11
CVE-2026-32122 OpenEMR: Missing Authorization on Claim File Tracker UI and AJAX Endpoint (V2) CWE-862 4.3 Medium2026-03-11
CVE-2026-32121 OpenEMR: Stored DOM XSS via `.html()` in Portal Signer Modal CWE-79 7.7 High2026-03-11
CVE-2026-32118 OpenEMR has Stored XSS in Graphical Pain Map legend via unescaped annotation text CWE-79 5.4 Medium2026-03-11
CVE-2026-24898 OpenEMR has an Unauthenticated MedEx Token Disclosure CWE-287 10.0 Critical2026-03-03
CVE-2026-25146 OpenEMR's payments gateway_api_key secret rendered into client JS code CWE-200 9.6 Critical2026-03-03
CVE-2026-24848 OpenEMR Arbitrary File Write leading to Remote Code Execution CWE-22 8.8AIHighAI2026-03-03
CVE-2026-25147 OpenEMR's Portal Payment Endpoint Trusts User-Controlled pid CWE-639 7.1 High2026-02-27
CVE-2026-24488 OpenEMR Vulnerable to Arbitrary File Exfiltration via Fax Endpoint CWE-22 6.5 Medium2026-02-27
CVE-2026-27943 OpenEMR's Eye Exam View Trusts form_id Without Verifying Patient/Encounter Ownership CWE-639 6.5 Medium2026-02-26
CVE-2026-25930 OpenEMR's Printable LBF Endpoint Leaks Arbitrary Patient Forms CWE-639 6.5 Medium2026-02-25
CVE-2026-25929 OpenEMR Patient Picture Context Allows Arbitrary Patient Photo Retrieval CWE-639 6.5 Medium2026-02-25
CVE-2026-25927 OpenEMR Missing Authorization Checks in DICOM Viewer State API CWE-639 7.1 High2026-02-25
CVE-2026-25746 OpenEMR has SQL Injection Vulnerability CWE-89 8.8 High2026-02-25
CVE-2026-25743 OpenEMR has Stored XSS in Questionnaire answers CWE-79 5.4AIMediumAI2026-02-25
CVE-2026-25476 OpenEMR has Session Timeout Bypass via skip_timeout_reset CWE-613 7.5 High2026-02-25
CVE-2026-25220 OpenEMR Messages "Show All" Not Restricted to Admins CWE-639 4.3AIMediumAI2026-02-25
CVE-2026-25164 OpenEMR's Document and Insurance REST Endpoints Skip ACL CWE-862 8.1 High2026-02-25
CVE-2026-24908 OpenEMR has SQL Injection in Patient API Sort Parameter CWE-89 10.0 Critical2026-02-25
CVE-2026-24890 OpenEMR Portal Users Can Forge Provider Signatures CWE-285 8.1 High2026-02-25
CVE-2026-24487 OpenEMR has FHIR Patient Compartment Bypass in CareTeam Resource CWE-200 7.5AIHighAI2026-02-25
CVE-2026-23627 OpenEMR has SQL Injection in Immunization Search/Report CWE-89 8.8AIHighAI2026-02-25
CVE-2026-25135 OpenEMR's location resource for Group.$export operation returns entire patient/user population contact information CWE-200 4.5 Medium2026-02-25

All 99 known CVE vulnerabilities affecting OpenEMR with full Chinese analysis, references, and POCs where available.