A vulnerability identified as problematic has been detected in OpenEMR . This affects an unknown function of the component Carecoordination Module . The manipulation leads to xml external entity reference. This vulnerability is uniquely identified as CVE-2026-33913 . The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.