Openclinica Community Edition vulnerabilities
2 known vulnerabilities affecting openclinica/community_edition.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-12922P2HIGHCVSS 8.8v3.0v3.1+15 more2025-11-10
CVE-2025-12922 [HIGH] CWE-22 CVE-2025-12922: A vulnerability was found in OpenClinica Community Edition up to 3.12.2/3.13. This affects an unknow
A vulnerability was found in OpenClinica Community Edition up to 3.12.2/3.13. This affects an unknown part of the file /ImportCRFData?action=confirm of the component CRF Data Import. Performing manipulation of the argument xml_file results in path traversal. The attack can be initiated remotely. The exploit has been made public and could be used. The v
nvd
CVE-2025-12921P2HIGHCVSS 8.8v3.0v3.1+15 more2025-11-10
CVE-2025-12921 [HIGH] CWE-74 CVE-2025-12921: A vulnerability has been found in OpenClinica Community Edition up to 3.12.2/3.13. Affected by this
A vulnerability has been found in OpenClinica Community Edition up to 3.12.2/3.13. Affected by this issue is some unknown functionality of the file /ImportCRFData?action=confirm of the component CRF Data Import. Such manipulation of the argument xml_file leads to xml injection. It is possible to launch the attack remotely. The exploit has been disclosed
nvd