Product
labkey server
6 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2019-9926
CVE-2019-9758
CVE-2019-9757
CVE-2019-3913
CVE-2019-3912
CVE-2019-3911
all versions
An issue was discovered in LabKey Server 19.1.0. It is possible to force a logged-in administrator to execute code through a /repo
all versions
An issue was discovered in LabKey Server 19.1.0. The display name of a user is vulnerable to stored XSS that can execute on admini
all versions
An issue was discovered in LabKey Server 19.1.0. Sending an SVG containing an XXE payload to the endpoint visualization-exportImag
< 18.3.0-61806.763
Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an authenticated remote attacker to unmount
< 18.3.0-61806.763
An open redirect vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 via the /__r1/ returnURL parameter allow
< 18.3.0-61806.763
Reflected cross-site scripting (XSS) vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 allows an unauthenti