CVE-2013-10044

An authenticated SQL injection vulnerability exists in OpenEMR = 4.1.1 Patch 14 that allows a low-privileged attacker to extract administrator credentials and subsequently escalate privileges. Once elevated, the attacker can exploit an unrestricted file upload flaw to achieve remote code execution, resulting in full compromise of the application and its host system.

CVSS

No CVSS.

References

Link	Resource
https://github.com/openemr/openemr
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/openemr_sqli_privesc_upload.rb
https://www.exploit-db.com/exploits/28329
https://www.exploit-db.com/exploits/28408
https://www.open-emr.org/
https://www.vulncheck.com/advisories/openemr-sqli-priv-esc-rce
https://www.exploit-db.com/exploits/28408
https://www.exploit-db.com/exploits/28329
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/openemr_sqli_privesc_upload.rb

Configurations

No configuration.

History

01 Aug 2025, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-01 21:15

Updated : 2025-08-06 15:15

NVD link : CVE-2013-10044

Mitre link : CVE-2013-10044

JSON object : View

Products Affected

No product.

CWE

No CWE.

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://github.com/openemr/openemr", "name": "https://github.com/openemr/openemr", "tags": [], "refsource": ""}, {"url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/openemr_sqli_privesc_upload.rb", "name": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/openemr_sqli_privesc_upload.rb", "tags": [], "refsource": ""}, {"url": "https://www.exploit-db.com/exploits/28329", "name": "https://www.exploit-db.com/exploits/28329", "tags": [], "refsource": ""}, {"url": "https://www.exploit-db.com/exploits/28408", "name": "https://www.exploit-db.com/exploits/28408", "tags": [], "refsource": ""}, {"url": "https://www.open-emr.org/", "name": "https://www.open-emr.org/", "tags": [], "refsource": ""}, {"url": "https://www.vulncheck.com/advisories/openemr-sqli-priv-esc-rce", "name": "https://www.vulncheck.com/advisories/openemr-sqli-priv-esc-rce", "tags": [], "refsource": ""}, {"url": "https://www.exploit-db.com/exploits/28408", "name": "https://www.exploit-db.com/exploits/28408", "tags": [], "refsource": ""}, {"url": "https://www.exploit-db.com/exploits/28329", "name": "https://www.exploit-db.com/exploits/28329", "tags": [], "refsource": ""}, {"url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/openemr_sqli_privesc_upload.rb", "name": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/openemr_sqli_privesc_upload.rb", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "An authenticated SQL injection vulnerability exists in OpenEMR = 4.1.1 Patch 14 that allows a low-privileged attacker to extract administrator credentials and subsequently escalate privileges. Once elevated, the attacker can exploit an unrestricted file upload flaw to achieve remote code execution, resulting in full compromise of the application and its host system."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-10044", "ASSIGNER": "disclosure@vulncheck.com"}}, "impact": {}, "publishedDate": "2025-08-01T21:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-08-06T15:15Z"}