Critical Security Fix for OpenEMR setup.php

From OpenEMR Project Wiki
Revision as of 06:35, 30 November 2017 by Bradymiller (talk | contribs) (Created page with ":In November of 2017, there were 2 critical security vulnerabilities reported in OpenEMR before 5.0.0 Patch 5 . :*Details of the first vulnerability can be found here: https://nv...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
In November of 2017, there were 2 critical security vulnerabilities reported in OpenEMR before 5.0.0 Patch 5 .
In order to protect yourself from this vulnerability:
  • If using OpenEMR 5.0.0:
  1. Update to the most recent patch via following instructions: OpenEMR Patches
  2. Remove the setup.php file from the openemr web directory (if you need this file in the future, then can download it at setup.php).
  • If using OpenEMR 4.2.2 or lower:
  1. Remove the setup.php file from the openemr web directory.