writeups.xyz / OpenEMR 5.0.1.3 Arbitrary File Actions

Submitter : c2a

Date: 17 November 2020

Bounty : undisclosed

Vulnerabilities :

• Arbitrary File Write
• Arbitrary File Read
• Security Code Review

Programs :

• OpenEMR

Authors :

• Josh Fam (@Pullerze)

Link :
https://jsecu.github.io/2020/11/17/openemr/