PT-2025-12831 · Openemr · Openemr

Bradymiller

Published

2025-03-25

Updated

2025-03-25

CVE-2025-29789

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 7.3.0

Description The issue concerns a Directory Traversal vulnerability in the Load Code feature of OpenEMR, a free and open source electronic health records and medical practice management application.

Recommendations For versions prior to 7.3.0, update to version 7.3.0 to resolve the issue.

Exploit

Fix

Path traversal

Relative Path Traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22CWE-23

Related Identifiers

CVE-2025-29789

GHSA-FFPQ-2WQJ-V8FF

Affected Products

Openemr

PT-2025-12831 · Openemr · Openemr

CVE-2025-29789

Weakness Enumeration

Related Identifiers

Affected Products

References · 8