5 matches found
CVE-2020-23829
interface/new/newcomprehensivesave.php in LibreHealth EHR 2.0.0 suffers from an authenticated file upload vulnerability, allowing remote attackers to achieve remote code execution RCE on the hosting webserver by uploading a maliciously crafted image...
CVE-2020-23829
interface/new/newcomprehensivesave.php in LibreHealth EHR 2.0.0 suffers from an authenticated file upload vulnerability, allowing remote attackers to achieve remote code execution RCE on the hosting webserver by uploading a maliciously crafted image...
CVE-2020-23829
interface/new/newcomprehensivesave.php in LibreHealth EHR 2.0.0 suffers from an authenticated file upload vulnerability, allowing remote attackers to achieve remote code execution RCE on the hosting webserver by uploading a maliciously crafted image...
CVE-2020-23829
CVE-2020-23829 affects LibreHealth EHR 2.0.0, specifically interface/new/new_comprehensive_save.php, with an authenticated file-upload flaw that enables remote code execution on the hosting webserver via a crafted image. The descriptions consistently indicate RCE risk when a user uploads a malici...
CVE-2020-23829
interface/new/newcomprehensivesave.php in LibreHealth EHR 2.0.0 suffers from an authenticated file upload vulnerability, allowing remote attackers to achieve remote code execution RCE on the hosting webserver by uploading a maliciously crafted image...