{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "6.0.0-NA" }, { "introduced": "0" }, { "last_affected": "6.0.0-patch_1" }, { "introduced": "0" }, { "last_affected": "6.0.0-patch_2" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "4c3f9f5917d765f944cdbf3b9df15375476b3711" }, { "introduced": "0" }, { "last_affected": "ea4c4bd0953defc7b90acc891aa1805db659fb67" }, { "introduced": "0" }, { "last_affected": "d132c54f3509537c508fd40c08a27929b61cac1d" } ], "repo": "https://github.com/openemr/openemr", "type": "GIT" } ] } ], "details": "An authenticated SQL injection issue in the calendar search function of OpenEMR 6.0.0 before patch 3 allows an attacker to read data from all tables of the database via the parameter provider_id, as demonstrated by the /interface/main/calendar/index.php?module=PostCalendar\u0026func=search URI.", "id": "CVE-2021-41843", "modified": "2026-03-14T13:46:06.178369107Z", "published": "2021-12-17T04:15:38.810Z", "references": [ { "type": "EVIDENCE", "url": "http://packetstormsecurity.com/files/165301/OpenEMR-6.0.0-6.1.0-dev-SQL-Injection.html" }, { "type": "EVIDENCE", "url": "http://seclists.org/fulldisclosure/2021/Dec/38" }, { "type": "EVIDENCE", "url": "https://trovent.github.io/security-advisories/TRSA-2109-01/TRSA-2109-01.txt" }, { "type": "EVIDENCE", "url": "https://trovent.io/security-advisory-2109-01" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" } ] }