Meddream

Pacs Server

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2025-54861

Exploit
  • EPSS 0.04%
  • Veröffentlicht 20.01.2026 14:49:54
  • Zuletzt bearbeitet 29.01.2026 15:21:48

A reflected cross-site scripting (xss) vulnerability exists in the modifyCoercion functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted U...

5.4

CVE-2025-57881

Exploit
  • EPSS 0.04%
  • Veröffentlicht 20.01.2026 14:49:52
  • Zuletzt bearbeitet 29.01.2026 15:20:07

A reflected cross-site scripting (xss) vulnerability exists in the modifyEmail functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL ...

5.4

CVE-2025-58080

Exploit
  • EPSS 0.04%
  • Veröffentlicht 20.01.2026 14:49:50
  • Zuletzt bearbeitet 29.01.2026 15:20:16

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7App functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL...

5.4

CVE-2025-53854

Exploit
  • EPSS 0.04%
  • Veröffentlicht 20.01.2026 14:49:48
  • Zuletzt bearbeitet 29.01.2026 15:24:06

A reflected cross-site scripting (xss) vulnerability exists in the modifyHL7Route functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted U...

6.1

CVE-2025-57787

Exploit
  • EPSS 0.05%
  • Veröffentlicht 20.01.2026 14:49:46
  • Zuletzt bearbeitet 29.01.2026 15:20:00

A reflected cross-site scripting (xss) vulnerability exists in the modifyRoute functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL ...

6.1

CVE-2025-53707

Exploit
  • EPSS 0.05%
  • Veröffentlicht 20.01.2026 14:49:44
  • Zuletzt bearbeitet 29.01.2026 15:23:59

A reflected cross-site scripting (xss) vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted...

5.4

CVE-2025-54853

Exploit
  • EPSS 0.04%
  • Veröffentlicht 20.01.2026 14:49:43
  • Zuletzt bearbeitet 29.01.2026 15:21:37

A reflected cross-site scripting (xss) vulnerability exists in the modifyUser functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL t...

5.4

CVE-2025-57786

Exploit
  • EPSS 0.04%
  • Veröffentlicht 20.01.2026 14:49:41
  • Zuletzt bearbeitet 29.01.2026 15:19:47

A reflected cross-site scripting (xss) vulnerability exists in the notifynewstudy functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted U...

6.1

CVE-2025-44000

Exploit
  • EPSS 0.05%
  • Veröffentlicht 20.01.2026 14:49:39
  • Zuletzt bearbeitet 29.01.2026 15:23:24

A reflected cross-site scripting (xss) vulnerability exists in the sendOruReport functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted UR...

6.1

CVE-2025-58095

Exploit
  • EPSS 0.05%
  • Veröffentlicht 20.01.2026 14:49:38
  • Zuletzt bearbeitet 29.01.2026 15:11:40

Multiple reflected cross-site scripting (xss) vulnerabilities exist in the config.php functionality of MedDream PACS Premium 7.3.6.870. Specially crafted malicious URLs can lead to arbitrary javascript code execution. An attacker can provide a crafte...