CVE-2026-33931 | OpenEMR up to 8.0.0.2 Patient Portal Payment Page authorization (GHSA-hf37-5rp9-j27j)

A vulnerability categorized as problematic has been discovered in OpenEMR. This issue affects some unknown processing of the component Patient Portal Payment Page. Such manipulation leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2026-33931. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More