CVE-2017-7351

CVE-2017-7351

EPSS 1.2%

A SQL injection issue exists in a file upload handler in REDCap 7.x before 7.0.11 via a trailing substring to SendITController:upload.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://labs.nettitude.com/blog/cve-2017-7351-redcap-7-0-0-7-0-10-sql-injection/