Vulnerability Details CVE-2024-6182
A vulnerability was found in LabVantage LIMS 2017. It has been rated as problematic. This issue affects some unknown processing of the file /labvantage/rc?command=page&page=LV_ViewSampleSpec&oosonly=Y&_sdialog=Y. The manipulation of the argument sdcid/keyid1 leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-269153 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.5%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 4.0
References
- https://gentle-khaan-c53.notion.site/Reflected-XSS-in-Labvantage-LIMS-95e338b6f9ea45db9a6c635c3c1ff3b8
- https://vuldb.com/?ctiid.269153
- https://vuldb.com/?id.269153
- https://vuldb.com/?submit.354361
- https://gentle-khaan-c53.notion.site/Reflected-XSS-in-Labvantage-LIMS-95e338b6f9ea45db9a6c635c3c1ff3b8
- https://vuldb.com/?ctiid.269153
- https://vuldb.com/?id.269153
- https://vuldb.com/?submit.354361
Products affected by CVE-2024-6182
-
cpe:2.3:a:labvantage:labvantage_lims:2017