OpenEMR scanned_notes/new.php OS Command Injection

Strike ID:
E20-0trk1
CVSS:
8.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
False Positive:
f
Variants:
3
Year:
2019

Description

A command injection vulnerability exists in OpenEMR 5.0.1 and earlier, within 'scanned_notes/new.php' form file, as a result of weak user input sanitization. By sending a crafted 'id' parameter in a HTTP request, a remote authenticated attacker might execute arbitrary system commands.

CVE

References