haoyu-haoyu

1 exploit Active since Mar 2026
CVE-2026-33910 WRITEUP HIGH WRITEUP
OpenEMR <=8.0.0.2 Patient Selection - SQL Injection
OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to insufficient input validation in the patient selection feature. Version 8.0.0.3 contains a patch.
CVSS 7.2