0
I Use This!
Very Low Activity
Analyzed about 7 hours ago. based on code collected about 11 hours ago.
 

Security

Vulnerabilities per Version

Learn more about BDSAs
 
 

Major Versions

1yr
3yr
5yr
10yr
All
click and drag to zoom
 
 
Security Vulnerabilities for Version:
Severities:
Type
Identifier Related Record Severity Date Published Description Versions Affected
CVE-2020-5733 Medium Apr 17, 2020 In OpenMRS 2.9 and prior, the export functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user more...
2.6.5, 2.6.4, 2.6.3, 2.6.2, 2.5.12, 2.3.6, 2.5.11, 2.5.10, 2.5.9, 2.5.8
CVE-2020-5732 Medium Apr 17, 2020 In OpenMRS 2.9 and prior, he import functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user a more...
2.6.5, 2.6.4, 2.6.3, 2.6.2, 2.5.12, 2.3.6, 2.5.11, 2.5.10, 2.5.9, 2.5.8
CVE-2020-5731 Medium Apr 17, 2020 In OpenMRS 2.9 and prior, the app parameter for the ActiveVisit's page is vulnerable to cross-site scripting.
2.6.5, 2.6.4, 2.6.3, 2.6.2, 2.5.12, 2.3.6, 2.5.11, 2.5.10, 2.5.9, 2.5.8
CVE-2020-5730 Medium Apr 17, 2020 In OpenMRS 2.9 and prior, the sessionLocation parameter for the login page is vulnerable to cross-site scripting.
2.6.5, 2.6.4, 2.6.3, 2.6.2, 2.5.12, 2.3.6, 2.5.11, 2.5.10, 2.5.9, 2.5.8
CVE-2020-5729 Medium Apr 17, 2020 In OpenMRS 2.9 and prior, the UI Framework Error Page reflects arbitrary, user-supplied input back to the browser, which can result in XSS. Any page th more...
2.6.5, 2.6.4, 2.6.3, 2.6.2, 2.5.12, 2.3.6, 2.5.11, 2.5.10, 2.5.9, 2.5.8
CVE-2020-5728 Medium Apr 17, 2020 OpenMRS 2.9 and prior copies "Referrer" header values into an html element named "redirectUrl" within many webpages (such as login.htm). There is insuf more...
2.6.5, 2.6.4, 2.6.3, 2.6.2, 2.5.12, 2.3.6, 2.5.11, 2.5.10, 2.5.9, 2.5.8