AI security firm AISLE scanned the open‑source electronic health record platform OpenEMR during Q1 2026 and flagged 38 CVEs. The tool, which previously exposed twelve zero‑days in OpenSSL, identified more than half of all OpenEMR advisories posted on GitHub that quarter. OpenEMR 8.0, released in February, serves over 100,000 providers and millions of patients worldwide globally.

Researchers Stanislav Fort, Petr Simecek and Pavel Kohout uncovered high‑severity flaws, notably CVE‑2026‑24908—an SQL injection in the Patient REST API’s _sort parameter that let authenticated users run UNION SELECT payloads, trigger time‑based blind attacks, and, if the DB user had FILE rights, read or write arbitrary files. A similar issue (CVE‑2026‑23627) in the Immunization module enabled direct data exfiltration and possible remote code execution.

OpenEMR maintainers acted quickly, merging AISLE‑generated patches into the February 11 2026 8.0.0 release and issuing three follow‑up updates through March. By early April the project integrated AISLE PRO into its code‑review pipeline, allowing the AI analyzer to block vulnerabilities before they reach production. The engagement demonstrates that autonomous scanning can shrink remediation cycles from months to weeks for critical health‑care software.