{"id":"CVE-2021-43094","details":"An SQL Injection vulnerability exists in OpenMRS Reference Application Standalone Edition \u003c=2.11 and Platform Standalone Edition \u003c=2.4.0 via GET requests on arbitrary parameters in patient.page.","modified":"2026-04-12T02:02:06.900496Z","published":"2022-05-10T12:15:08.523Z","references":[{"type":"WEB","url":"https://openmrs.org/demo/"},{"type":"ADVISORY","url":"https://wiki.openmrs.org/display/docs/Reporting+Bugs"},{"type":"REPORT","url":"https://issues.openmrs.org/browse/TRUNK-6043"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/openmrs/openmrs-core","events":[{"introduced":"0"},{"last_affected":"e4adbdc434a20ecf53094fe081d16038de3d0bd2"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"2.4.0"}],"cpe":"cpe:2.3:a:openmrs:openmrs:*:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"versions":["1.1.0","1.2.0","1.2.01","1.2.01-RC1","1.3.0-RC1","1.3.0-RC2","1.3.0-RC3","1.3.0-RC4","2.2.0-20181112.082045-243","2.4.0","2.4.0-alpha.2","2.4.0-alpha.3","2.4.0-beta"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-43094.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/openmrs/openmrs-module-referenceapplication","events":[{"introduced":"0"},{"last_affected":"6b7c435071c2a83006b64f3aa987e3eb3bd7ecbe"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"last_affected":"2.11"}],"cpe":"cpe:2.3:a:openmrs:reference_application:*:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"versions":["1.0","1.0.1","2.5","referenceapplication-2.1","referenceapplication-2.1.1","referenceapplication-2.10.0","referenceapplication-2.10.0-alpha","referenceapplication-2.11.0","referenceapplication-2.2","referenceapplication-2.3","referenceapplication-2.6.0","referenceapplication-2.7.0","referenceapplication-2.8.0","referenceapplication-2.9.0","referenceapplication-2.9.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-43094.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}