Skip to content
Explore more InterSystems sites:
Australia New Zealand
Australia & New Zealand
Benelux
Benelux:
Benelux:
Brazil
Brazil
Chile
Chile
China
China
Czech Republic
Czech Republic
Finland
Finland
France
France
Germany
Germany
Hungary
Hungary
indonesian flag
Indonesia
Italy
Italy
Japan
Japan
Middle East Region
Middle East
South Africa
South Africa
Middle East Region
Southeast Asia
Spain
Spain
Sweden
Sweden
United Kingdom Ireland
United Kingdom & Ireland
United States
United States
Explore more InterSystems sites:
Australia New Zealand
Australia & New Zealand
Benelux
Benelux:
Benelux:
Brazil
Brazil
Chile
Chile
China
China
Czech Republic
Czech Republic
Finland
Finland
France
France
Germany
Germany
Hungary
Hungary
indonesian flag
Indonesia
Italy
Italy
Japan
Japan
Middle East Region
Middle East
South Africa
South Africa
Middle East Region
Southeast Asia
Spain
Spain
Sweden
Sweden
United Kingdom Ireland
United Kingdom & Ireland
United States
United States
Keressen, hogy többet megtudjon az InterSystems termékeiről és megoldásairól, karrierlehetőségekről és még sok másról.
Home
Product Alerts & Advisories
Advisory: Cross-site Scripting Vulnerability in HealthShare Patient Index

Advisory: Cross-site Scripting Vulnerability in HealthShare Patient Index

Mar 01, 2022

March 1, 2022 – Advisory: Cross-site Scripting Vulnerability in HealthShare Patient Index

This issue affects HealthShare Patient Index versions 13, 14, 15.032, 2018.1, 2019.1, 2020.1 and 2020.2 and 2021.1.

A correction that addresses improper neutralization of special elements used in a command is available from the WRC as HSPI-2267.
RELATED TOPICS
HealthShare

Latest Alerts & Advisories

Mar 25, 2026
Product Alerts & Advisories
InterSystems Announces General Availability of InterSystems IRIS, InterSystems IRIS for Health, and HealthShare Health Connect 2026.1
The 2026.1 release of InterSystems IRIS® data platform, InterSystems IRIS® for HealthTM, and HealthShare® Health Connect is now Generally Available (GA). This is an Extended Maintenance (EM) release.
More
Mar 18, 2026
Product Alerts & Advisories
Alert: Journaling Potentially Disabled for System Work Queues
Product & Versions Affected Risk Category & Score Explicit Requirements DP-449126 InterSystems IRIS® data platform
More
Mar 17, 2026
Product Alerts & Advisories
Alert: System Hang with ≥ 2 TB Database Cache
Product & Versions Affected Risk Category & Score Explicit Requirements DP-448888 Products:
More
Feb 26, 2026
Product Alerts & Advisories
Advisory: HealthShare Provider Directory Global Occupies Large Amount of Storage
The problem affects the following versions of HealthShare Provider Directory:
More
Feb 10, 2026
Product Alerts & Advisories
Advisory: Custom Agreement Function Causes Error During Linkage Rebuild
This problem affects the following products:
More
Feb 10, 2026
Product Alerts & Advisories
Advisory: Deleted HealthShare Namespaces May Only Be Partially Removed from the Federation
This problem affects the following products:
More
Feb 10, 2026
Product Alerts & Advisories
Advisory: Consent Filtering Does Not Block Demographics from Appearing on a Clinician’s Recently Viewed Patient List
This problem affects the following products:
More
Feb 10, 2026
Product Alerts & Advisories
Advisory: ApplyConsent Setting for IHE Patient Query Processes is Disabled by Default
This problem affects the following products:
More
Feb 10, 2026
Product Alerts & Advisories
Advisory: Purge Task for Expire and Query Edge Gateways Does Not Delete All Expired MRNs
This problem affects the following products:
More
Feb 10, 2026
Product Alerts & Advisories
Advisory: Purge Task for Expire and Query Edge Gateways Fails to Complete Due to Streamlet Matcher Errors
This problem affects the following products:
More