CVE-2019-16862
Published
CVSS v3
6.1
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
2
PROJECTS
Description
Reflected XSS in interface/forms/eye_mag/view.php in OpenEMR 5.x before 5.0.2.1 allows a remote attacker to execute arbitrary code in the context of a user's session via the pid parameter.
The most popular open source electronic health records and medical practice management solution.
GitHub