.. / CVE-2022-2733

Exploit for Openemr < 7.0.0.1 - Cross-Site Scripting (CVE-2022-2733)

Description:

Cross-site Scripting (XSS) - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1.

Nuclei Template

View the template here CVE-2022-2733.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-2733.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-2733
https://huntr.dev/bounties/25b91301-dfb0-4353-a732-e051bbe8420c/
https://github.com/openemr/openemr/commit/59458bc15ab0cb556c521de9d5187167d6f88945