Difference between revisions of "Security Alert Fixes"

From OpenEMR Project Wiki
Line 1: Line 1:
Place to record and track OpenEMR security alerts and their fixes:
Place to record and track OpenEMR security alerts and their fixes:
*<span style="color:red">'''This page is outdated. Awaiting a developer to update/track this.'''</span>
*<span style="color:red">'''This page is outdated. Awaiting a developer to update/track this.'''</span> [[User:Bradymiller|Bradymiller]] 19:34, 30 November 2012 (UTC)
:*[http://packetstorm.unixteacher.org/1104-exploits/OpenEMR4.0.0-db.txt Arbitrary Database Creation/Database Enumeration]'''
:*[http://packetstorm.unixteacher.org/1104-exploits/OpenEMR4.0.0-db.txt Arbitrary Database Creation/Database Enumeration]'''
::*Fixed in most recent 4.0.0 patch and dev version
::*Fixed in most recent 4.0.0 patch and dev version

Revision as of 19:34, 30 November 2012

Place to record and track OpenEMR security alerts and their fixes:

  • This page is outdated. Awaiting a developer to update/track this. Bradymiller 19:34, 30 November 2012 (UTC)
  • Fixed in most recent 4.0.0 patch and dev version
  • Fixed in most recent 4.0.0 patch and dev version
  • (waiting for a developer to fix)
  • Security exploit: (Multiple cross-site scripting)
  • Security exploit: (Multiple sql-injection)
  • Security exploit: (One sql-injection)
  • Security exploit: (One sql-injection)
  • Security exploit: (Multiple Local File Inclusion and arbitrary command execution vulnerabilities)
Retrieved from "https://www.open-emr.org/wiki/index.php?title=Security_Alert_Fixes&oldid=13077"