Vulnerability Spotlight: Multiple vulnerabilities in phpGACL class

Vulnerability Spotlight: Multiple vulnerabilities in phpGACL class


Claudio Bozzato of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.



Cisco Talos recently discovered multiple vulnerabilities in the phpGACL class. One of these vulnerabilities also affects OpenEMR, a medical practice management software written in PHP. phpGACL is a PHP library that allows developers to implement permission systems via a Generic Access Control List. An adversary could exploit these vulnerabilities by sending the target machine a specially crafted, malicious HTTP request or URL.

In accordance with our coordinated disclosure policy, Cisco Talos worked with phpGACL and OpenEMR to ensure that these issues are resolved and that an update is available for affected customers.

Vulnerability details


phpGACL template multiple cross-site scripting vulnerabilities (TALOS-2020-1177/CVE-2020-13562 - CVE-2020-13564)


Multiple cross-site scripting vulnerabilities exist in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a crafted URL to trigger this vulnerability.


Read the complete vulnerability advisory here for additional information. 


phpGACL return_page redirection open redirect vulnerability (TALOS-2020-1178/CVE-2020-13565)


An open redirect vulnerability exists in the return_page redirection functionality of phpGACL 3.3.7. A specially crafted HTTP request can redirect users to an arbitrary URL. An attacker can provide a crafted URL to trigger this vulnerability.


Read the complete vulnerability advisory vulnerability spotlight multiple vulnerabilities phpgacl class