Lucene search
K

51 matches found

Cvelist
Cvelist
added 2017/01/10 3:0 p.m.19 views

CVE-2015-4594

eClinicalWorks Population Health CCMR suffers from a session fixation vulnerability. When authenticating a user, the application does not assign a new session ID, making it possible to use an existent session ID...

9.5AI score0.06238EPSS
Exploits5References3
Cvelist
Cvelist
added 2017/01/10 3:0 p.m.25 views

CVE-2015-4591

eClinicalWorks Population Health CCMR suffers from a cross site scripting vulnerability in login.jsp which allows remote unauthenticated users to inject arbitrary javascript via the strMessage parameter...

6.4AI score0.05132EPSS
Exploits5References3
Cvelist
Cvelist
added 2017/01/10 3:0 p.m.26 views

CVE-2015-4592

eClinicalWorks Population Health CCMR suffers from an SQL injection vulnerability in portalUserService.jsp which allows remote authenticated users to inject arbitrary malicious database commands as part of user input...

8.8AI score0.03346EPSS
Exploits5References3
CVE
CVE
added 2017/01/10 3:0 p.m.67 views

CVE-2015-4592

The CVE-2015-4592 entry concerns eClinicalWorks Population Health (CCMR) Client Portal Software. A SQL injection vulnerability exists in portalUserService.jsp that allows remote authenticated users to inject arbitrary malicious database commands as part of user input. The issue is documented acro...

8.8CVSS9.2AI score0.03346EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2017/01/10 3:0 p.m.21 views

CVE-2015-4593

eClinicalWorks Population Health CCMR suffers from a cross-site request forgery CSRF vulnerability in portalUserService.jsp which allows remote attackers to hijack the authentication of content administrators for requests that could lead to the creation, modification and deletion of users,...

8.9AI score0.03355EPSS
Exploits5References3
CVE
CVE
added 2017/01/10 3:0 p.m.60 views

CVE-2015-4593

CVE-2015-4593 refers to a cross-site request forgery vulnerability in the EClinicalWorks Population Health (CCMR) Client Portal, specifically in portalUserService.jsp. The issue could allow remote attackers to hijack content administrator authentication and perform actions such as creating, modif...

8.8CVSS9.3AI score0.03355EPSS
Exploits5References3Affected Software1
CNVD
CNVD
added 2016/02/24 12:0 a.m.3 views

EClinicalWorks Population Health (CCMR) Client Portal Session Fixation Vulnerability

EClinicalWorks Population Health a.k.a. eClinicalWorks CCMR is a suite of population health solutions from EClinicalWorks, Inc. in the U.S. Client Portal is one of the portals. A session fixation vulnerability exists in the EClinicalWorks Population Health Client Portal that can be exploited by a...

9.8CVSS6.9AI score0.06238EPSS
Exploits5References1
0day.today
0day.today
added 2016/02/02 12:0 a.m.61 views

eClinicalWorks (CCMR) - Multiple Vulnerabilities

Exploit for php platform in category web applications Title: eClinicalWorks CCMR - Multiple Vulnerabilities Vendor: https://www.eclinicalworks.com Product: eClinicalWorks Population Health CCMR Client Portal Software URL: https://www.eclinicalworks.com/products-services/population-health-ccmr/...

7.5CVSS0.2AI score0.06238EPSS
Exploits8
Exploit DB
Exploit DB
added 2016/02/02 12:0 a.m.47 views

eClinicalWorks (CCMR) - Multiple Vulnerabilities

Title: eClinicalWorks CCMR - Multiple Vulnerabilities Vendor: https://www.eclinicalworks.com Product: eClinicalWorks Population Health CCMR Client Portal Software URL: https://www.eclinicalworks.com/products-services/population-health-ccmr/ Credit: Jerold Hoong -----------------------------------...

9.8CVSS7.4AI score0.06238EPSS
Exploits8
exploitpack
exploitpack
added 2016/02/02 12:0 a.m.62 views

eClinicalWorks (CCMR) - Multiple Vulnerabilities

eClinicalWorks CCMR - Multiple Vulnerabilities Title: eClinicalWorks CCMR - Multiple Vulnerabilities Vendor: https://www.eclinicalworks.com Product: eClinicalWorks Population Health CCMR Client Portal Software URL: https://www.eclinicalworks.com/products-services/population-health-ccmr/ Credit:...

7.5CVSS0.2AI score0.06238EPSS
Exploits8
Packet Storm
Packet Storm
added 2016/02/01 12:0 a.m.46 views

eClinicalWorks Population Health (CCMR) SQL Injection / CSRF / XSS

Title: eClinicalWorks CCMR - Multiple Vulnerabilities Vendor: https://www.eclinicalworks.com Product: eClinicalWorks Population Health CCMR Client Portal Software URL: https://www.eclinicalworks.com/products-services/population-health-ccmr/ Credit: Jerold Hoong -----------------------------------...

0.5AI score0.06238EPSS
Exploits8
Rows per page
Query Builder