vendor:
lh-ehr
by:
Bobby Cooke
9.8
CVSS
HIGH
Authenticated Remote Code Execution
78
CWE
Product Name: lh-ehr
Affected Version From: 2.0.0
Affected Version To: 2.0.0
Patch Exists: NO
Related CWE: N/A
CPE: 2.0.0
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Windows 10 Pro 1909 (x64_86) + XAMPP 7.4.4
2020
LibreHealth 2.0.0 – Authenticated Remote Code Execution
LibreHealth v2.0.0 suffers from an authenticated file upload vulnerability allowing remote attackers to gain remote code execution (RCE) on the hosting webserver via uploading a maliciously crafted image.
Mitigation:
Ensure that all user input is validated and sanitized before being used in any file uploads.
