Webapi
1 CVEs
product
Monthly
Observational Health Data Sciences and Informatics (OHDSI) WebAPI before 2.7.2 allows SQL injection in FeatureExtractionService.java. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
Webapi
NVD
GitHub
CVSS 3.0
9.8
EPSS
1.9%
CVE-2019-15563
Maven
EPSS 2%
CVSS 9.8
CRITICAL
PATCH
Act Now
Observational Health Data Sciences and Informatics (OHDSI) WebAPI before 2.7.2 allows SQL injection in FeatureExtractionService.java. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
Webapi
NVD
GitHub