org.opencrx:opencrx-core-models (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.opencrx:opencrx-core-models, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (9)
CVE-2021-25959 — CVSS 6.1 (medium): In OpenCRX, versions v4.0.0 through v5.1.0 are vulnerable to reflected Cross-site Scripting (XSS), due to unsanitized parameters in the…
CVE-2023-40809 — CVSS 6.1 (medium): OpenCRX version 5.2.0 is vulnerable to HTML injection via the Activity Search Criteria-Activity Number.