A vulnerability has been found in OpenEMR up to 8.0.0.2 and classified as problematic . The affected element is an unknown function of the file library/js/SearchHighlight.js of the component Custom Report Page . Performing a manipulation results in cross site scripting. This vulnerability was named CVE-2026-32119 . The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.