CVE-2018-1000649

Name of the Vulnerable Software and Affected Versions LibreHealthIO lh-ehr version REL-2.0.0

Description The issue concerns an authenticated unrestricted file write vulnerability in the letter.php file, specifically within patient file letter functions. This vulnerability can lead to writing files with malicious content, potentially resulting in remote code execution. The attack is exploitable via user-controlled input, such as the username or other user-provided data, although specific variables like user id or password are not mentioned.

Recommendations For LibreHealthIO lh-ehr version REL-2.0.0, consider restricting access to the letter.php file or the patient file letter functions to minimize the risk of exploitation until a patch is available. As a temporary workaround, disabling the vulnerable functions within letter.php may help mitigate the issue.