Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.3
OpenEMR: Patient Portal Users Can Access Staff Signatures
CVE-2026-33934
Summary
OpenEMR's patient portal in versions before 8.0.0.3 allows any patient portal user to view the signature of any medical staff member. This could be a concern for patient confidentiality and data protection. To fix this, upgrade to version 8.0.0.3 or later.
Original title
OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 8.0.0.3 have a missing authorization check in `portal/sign/lib/show-signat...
Original description
OpenEMR is a free and open source electronic health records and medical practice management application. Versions prior to 8.0.0.3 have a missing authorization check in `portal/sign/lib/show-signature.php` that allows any authenticated patient portal user to retrieve the drawn signature image of any staff member by supplying an arbitrary `user` value in the POST body. The companion write endpoint (`save-signature.php`) was already hardened against this same issue, but the read endpoint was not updated to match. Version 8.0.0.3 patches the issue.
nvd CVSS3.1
4.3
Vulnerability type
CWE-639
Authorization Bypass Through User-Controlled Key
CWE-862
Missing Authorization
Published: 26 Mar 2026 · Updated: 26 Mar 2026 · First seen: 26 Mar 2026