CVE-2017-5569
CVE-2017-5569 affects eClinicalWorks Patient Portal 7.0 build 13, with a blind SQL injection in template.jsp. The vulnerability can be exploited without authentication via an HTTP POST request to dump database data to a malicious server using out-of-band techniques (e.g., select_loadfile()). No r...