what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Brian D. Hysell

OSCAR EMR 15.21beta361 XSS / Disclosure / CSRF / Insecure Direct Object Reference

Posted Aug 23, 2018

Authored by Brian D. Hysell

OSCAR EMR version 15.21beta361 suffers from remote code execution, cross site request forgery, cross site scripting, denial of service, deserialization, remote SQL injection, and path traversal vulnerabilities.

tags | exploit, remote, denial of service, vulnerability, code execution, xss, sql injection, csrf

advisories | CVE-2014-0114

SHA-256 | b49a30c7affbcdc3aadacdc0ecd98471127fca93159d568f99389e4095c9ecbb

Download | Favorite | View

OpenMRS Reporting Module 0.9.7 Remote Code Execution

Posted Jan 6, 2016

Authored by Brian D. Hysell

OpenMRS Reporting module version 0.9.7 suffers from a remote code execution vulnerability.

tags | exploit, remote, code execution

SHA-256 | fd199e31ee21d75296c0e641c82e2410d535f732c41273661857d2b2cf265376

Download | Favorite | View

OpenEMR 4.2.0 Authentication Bypass

Posted Jun 19, 2015

Authored by Brian D. Hysell

OpenEMR versions 4.2.0 and 4.2.0 patch 1 suffer from an authentication bypass vulnerability.

tags | advisory, bypass

advisories | CVE-2015-4453

SHA-256 | a589315de279dd22ee99c036b36a4cfd6f70531f2f25bab5afeaec7ef31766f6

Download | Favorite | View