Labkey Server Community Edition

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:tenable:labkey_server_community_edition:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorTenable (c0ec4e71-d667-5327-b3ed-b4c21aa5a87e)
ProductLabkey Server Community Edition (8d34a082-9661-5672-966a-c7413d4507b5)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-3913 vulnerable 2026-06-03 14:40:27.865743 Details available
Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an authenticated remote attacker to unmount any drive on the system leading to denial of service.
Published: 2019-01-30T20:00:00.000Z
Updated: 2024-09-17T04:14:42.674Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-3912 vulnerable 2026-06-03 14:40:27.863606 Details available
An open redirect vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 via the /__r1/ returnURL parameter allows an unauthenticated remote attacker to redirect users to arbitrary web sites.
Published: 2019-01-30T20:00:00.000Z
Updated: 2024-09-17T01:12:23.512Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-3911 vulnerable 2026-06-03 14:40:27.862624 Details available
Reflected cross-site scripting (XSS) vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 allows an unauthenticated remote attacker to inject arbitrary javascript via the onerror parameter in the /__r2/query endpoints.
Published: 2019-01-30T20:00:00.000Z
Updated: 2024-09-17T04:14:40.386Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.