Medium severity5.4NVD Advisory· Published Oct 29, 2019· Updated Jun 17, 2026
CVE-2019-9758
CVE-2019-9758
Description
An issue was discovered in LabKey Server 19.1.0. The display name of a user is vulnerable to stored XSS that can execute on administrators from security/permissions.view, security/addUsers.view, or wiki/Administration/page.view in the admin panel, leading to privilege escalation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- LabKey/LabKey Serverdescription
- Range: =19.1.0
Patches
Vulnerability mechanics
References
2- github.com/RhinoSecurityLabs/CVEs/tree/master/CVE-2019-9758nvdExploitThird Party Advisory
- rhinosecuritylabs.com/application-security/labkey-server-vulnerabilities-to-rcenvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.