Loading
In OpenMRS 2.9 and prior, the app parameter for the ActiveVisit's page is vulnerable to cross-site scripting.
Use CWE-79, Openmrs vendor hub and Openmrs product page to widen CVE-2020-5731 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2021-43094, CVE-2025-25928 and CVE-2022-23612 for nearby disclosures in the same product family.