CVE-2011-5160

OpenEMR 4 - Cross-Site Scripting via Site Parameter

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2011-5160. PoCs published by Level, AutoSec Tools.

AI-analyzed exploit summary The exploit demonstrates an arbitrary file upload vulnerability in OpenEMR 4, allowing an attacker to upload a malicious shell via the Patient Photograph feature. It also includes examples of XSS and SQL injection vulnerabilities in the same software.

Description

Cross-site scripting (XSS) vulnerability in setup.php in OpenEMR 4 allows remote attackers to inject arbitrary web script or HTML via the site parameter.

Exploits (2)

exploitdb WORKING POC

by Level · textwebappsphp

https://www.exploit-db.com/exploits/18274

View Code ZIP pw:eip

The exploit demonstrates an arbitrary file upload vulnerability in OpenEMR 4, allowing an attacker to upload a malicious shell via the Patient Photograph feature. It also includes examples of XSS and SQL injection vulnerabilities in the same software.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: OpenEMR 4

Auth required

Prerequisites: Valid user credentials · Access to the Patient Photograph upload feature

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

exploitdb WORKING POC

by AutoSec Tools · textwebappsphp

https://www.exploit-db.com/exploits/17118

View Code ZIP pw:eip

The exploit demonstrates a Local File Inclusion (LFI) vulnerability in OpenEMR 4.0.0, allowing arbitrary file inclusion via path traversal. It also includes proofs for arbitrary database creation and reflected XSS vulnerabilities.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: OpenEMR 4.0.0

No auth needed

Prerequisites: Access to the target web application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/18274

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/71982

Scores

EPSS 0.0133

EPSS Percentile 67.4%

Details

CWE

CWE-79

Status published

Products (3)

open-emr/openemr 4.0.0

open-emr/openemr 4.1.0

open-emr/openemr 4.1.1

Published Sep 09, 2012

Tracked Since Feb 18, 2026