Authenticated Unrestricted File Write Vulnerability in LibreHealthIO LH-EHR Version REL-2.0.0

Authenticated Unrestricted File Write Vulnerability in LibreHealthIO LH-EHR Version REL-2.0.0

CVE-2018-1000646 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote code execution.

Learn more about our Web Application Penetration Testing UK.