2 matches found
CVE-2017-5599
An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a reflected Cross Site Scripting vulnerability which affects the raceMasterList.jsp page within the Patient Portal. Inserted payload is rendered within the Patient Portal and the raceMasterList.jsp page does not requir...
CVE-2017-5599
CVE-2017-5599 affects eClinicalWorks Patient Portal 7.0 build 13, specifically the raceMasterList.jsp page. The vulnerability is a reflected Cross-Site Scripting issue where an attacker can inject payload via the parameter race, with the payload rendered in the portal. The page does not require a...