Filtered by vendor Openmrs Subscriptions
Filtered by product Openmrs Module Reporting Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-7990 1 Openmrs 1 Openmrs Module Reporting 2024-11-21 N/A
The Reporting Module 1.12.0 for OpenMRS allows CSRF attacks with resultant XSS, in which administrative authentication is hijacked to insert JavaScript into a name field in webapp/reports/manageReports.jsp.