A vulnerability categorized as problematic has been discovered in OpenEMR . The impacted element is the function json_encode of the component POST Parameter Handler . Executing a manipulation of the argument Title can lead to cross site scripting. This vulnerability is handled as CVE-2026-33911 . The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.