What the vulnerability does

01Description

OpenClinic GA versions 5.09.02 and 5.89.05b do not properly check permissions before executing SQL queries, which may allow a low-privilege user to access privileged information.

Key dates

02Disclosure timeline

July 20, 2020 CVE published
August 4, 2024 Record updated