Critical severity9.8NVD Advisory· Published Aug 26, 2019· Updated Jun 17, 2026
CVE-2019-15563
CVE-2019-15563
Description
Observational Health Data Sciences and Informatics (OHDSI) WebAPI before 2.7.2 allows SQL injection in FeatureExtractionService.java.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.ohdsi:WebAPIMaven | < 2.7.2 | 2.7.2 |
Affected products
2- Observational Health Data Sciences and Informatics (OHDSI)/WebAPIdescription
Patches
Vulnerability mechanics
References
5- github.com/OHDSI/WebAPI/pull/1101nvdPatchThird Party AdvisoryWEB
- github.com/OHDSI/WebAPI/releases/tag/v2.7.2nvdRelease NotesThird Party AdvisoryWEB
- github.com/advisories/GHSA-2chv-87wj-pjv2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-15563ghsaADVISORY
- github.com/OHDSI/WebAPI/commit/d7b12b2f5234e425e5bc76545e75de0d6eb3f8fdghsaWEB
News mentions
0No linked articles in our index yet.