CVE-2025-53912 — CVSS 9.6 (critical): An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A specially crafted…
CVE-2025-27724 — CVSS 9.3 (critical): A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream PACS Premium 7.3.3.840. A specially crafted…
CVE-2025-26469 — CVSS 9.3 (critical): An incorrect default permissions vulnerability exists in the CServerSettings::SetRegistryValues functionality of MedDream PACS Premium…
CVE-2025-3480 — CVSS 6.5 (medium): MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows…
CVE-2025-54157 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-54495 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the emailfailedjob functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-54778 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the existingUser functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-54814 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyAutopurgeFilter functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-54817 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the autoPurge functionality of MedDream PACS Premium 7.3.6.870. A specially…
CVE-2025-54852 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyAeTitle functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-54853 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyUser functionality of MedDream PACS Premium 7.3.6.870. A specially…
CVE-2025-54861 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercion functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-55071 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyAnonymize functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-57786 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the notifynewstudy functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-57787 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-57881 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-58080 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-58087 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58088 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58089 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58090 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58091 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58092 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58093 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58094 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-58095 — CVSS 6.1 (medium): Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870…
CVE-2025-32731 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the radiationDoseReport.php functionality of meddream MedDream PACS Premium…
CVE-2025-36556 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the ldapUser functionality of MedDream PACS Premium 7.3.6.870. A specially…
CVE-2025-44000 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-46270 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the fetchPriorStudies functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-53516 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the downloadZip functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-53707 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-53854 — CVSS 6.1 (medium): A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870. A…
CVE-2025-24485 — CVSS 5.8 (medium): A server-side request forgery vulnerability exists in the cecho.php functionality of MedDream PACS Premium 7.3.5.860. A specially crafted…