>> OpenMRS 2.3 (1.11.4) Expression Language Injection

USER: deepcore // DATE: 2015-12-09 20:17 // MODIFIED: 2015-12-09

OpenMRS version 2.3 (1.11.4) suffers from an expression language injection vulnerability that can lead to arbitrary java code being executed.