CVE-2018-1000646
LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote code execution.
Date published : 2018-08-20
https://0dd.zone/2018/08/07/lh-ehr-Authenticated-File-Write/