Skip to content

One brick to the IT world

@manfromkz

  • Home
  • About
  • Contact

Tag: zero-day

Multiple vulnerabilities in LibreHealth EHR 2.0.0

I have found several vulnerabilities in open-source system LibreHealth EHR 2.0.0. More precisely 1 SQL-injection (CVE-2022-29938) and 2 Cross-site scripting (XSS) (CVE-2022-29939, CVE-2022-29940) vulnerabilities.

Published May 4, 2022
Categorized as PHP, Research Tagged cross-site script, librehealth, open source, OpenEMR, SQL-injection, xss, zero-day

Recent Posts

  • Multiple vulnerabilities in LibreHealth EHR 2.0.0
  • Video course “Ethical hacking and Penetration testing”
  • We won The Standoff 365. Again.
  • My speech at Kolesa Conf’21
  • Open SysConf’21 is over

Recent Comments

  • nomi on Review of PHP backdoors

Categories

  • CTF (2)
  • PHP (8)
  • Research (8)
  • Uncategorized (4)
One brick to the IT world
Proudly powered by WordPress.