Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Echo ShareCare 8.15.5. The TextReader feature in General/TextReader/TextReader.cfm is susceptible to a local file inclusion vulnerability when processing remote input in the textFile parameter from an authenticated user, leading to the ability to read arbitrary files on the server filesystems as well any files accessible via Universal Naming Convention (UNC) paths.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Echo ShareCare 安全漏洞
Vulnerability Description
ShareCare是Echo Group 的一个临床和财务软件系统。 Echo ShareCare 8.15.5版本存在安全漏洞,该漏洞源于在处理来自经过身份验证的用户的 textFile 参数中的远程输入时,General/TextReader/TextReader.cfm 中的 TextReader 功能容易受到本地文件包含漏洞的影响,从而导致能够读取服务器文件系统上的任意文件以及可通过以下方式访问的任何文件通用命名约定 (UNC) 路径。
CVSS Information
N/A
Vulnerability Type
N/A