CVE-2026-33910 | OpenEMR up to 8.0.0.2/8.0.0.3 sql injection (GHSA-x32c-xj5g-7jx7)

March 26, 2026 Yanac

A vulnerability, which was classified as critical, was found in OpenEMR up to 8.0.0.2/8.0.0.3. Affected by this issue is some unknown functionality. Executing a manipulation can lead to sql injection.

This vulnerability is registered as CVE-2026-33910. It is possible to launch the attack remotely. No exploit is available.

You should upgrade the affected component.VulDB Recent EntriesRead More