CVE-2015-4593

Name of the Vulnerable Software and Affected Versions eClinicalWorks Population Health (CCMR) (affected versions not specified)

Description The issue is related to a cross-site request forgery (CSRF) vulnerability. This vulnerability is located in the portalUserService.jsp file and can be exploited by remote attackers to hijack the authentication of content administrators. The exploitation could lead to unauthorized creation, modification, and deletion of users, appointments, and employees.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.