SQL Injection in make_task function in OpenEMR

SQL Injection in make_task function in OpenEMR

CVE-2018-17179 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered in OpenEMR before 5.0.1 Patch 7. There is SQL Injection in the make_task function in /interface/forms/eye_mag/php/taskman_functions.php via /interface/forms/eye_mag/taskman.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.