VYPR
Vendor

LabVantage

Products
1
CVEs
10
Across products
10
Status
Private

Products

1

Recent CVEs

10
  • CVE-2025-43951CriApr 22, 2025
    risk 0.64cvss 9.8epss 0.00

    LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter.

  • CVE-2024-5771MedJun 8, 2024
    risk 0.41cvss 6.3epss 0.00

    A vulnerability classified as critical was found in LabVantage LIMS 2017. This vulnerability affects unknown code of the file /labvantage/rc?command=page&page=SampleList&_iframename=list of the component POST Request Handler. The manipulation of the argument param1 leads to sql…

  • CVE-2020-7959MedFeb 17, 2020
    risk 0.35cvss 5.3epss 0.01

    LabVantage LIMS 8.3 does not properly maintain the confidentiality of database names. For example, the web application exposes the database name. An attacker might be able to enumerate database names by providing his own database name in a request, because the response will…

  • CVE-2024-6370LowJun 27, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability classified as problematic was found in LabVantage LIMS 2017. Affected by this vulnerability is an unknown functionality of the file /labvantage/rc?command=file&file=WEB-OPAL/pagetypes/bulletins/sendbulletin.jsp of the component POST Request Handler. The…

  • CVE-2024-6369LowJun 27, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability classified as problematic has been found in LabVantage LIMS 2017. Affected is an unknown function of the file /labvantage/rc?command=page&sdcid=LV_ReagentLot of the component POST Request Handler. The manipulation of the argument mode leads to cross site…

  • CVE-2024-6368LowJun 27, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in LabVantage LIMS 2017. It has been rated as problematic. This issue affects some unknown processing of the file /labvantage/rc?command=page of the component POST Request Handler. The manipulation of the argument param1 leads to cross site scripting.…

  • CVE-2024-6367LowJun 27, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in LabVantage LIMS 2017. It has been declared as problematic. This vulnerability affects unknown code of the file /labvantage/rc?command=file&file=WEB-CORE/elements/files/filesembedded.jsp of the component POST Request Handler. The manipulation of the…

  • CVE-2024-6182LowJun 20, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in LabVantage LIMS 2017. It has been rated as problematic. This issue affects some unknown processing of the file /labvantage/rc?command=page&page=LV_ViewSampleSpec&oosonly=Y&_sdialog=Y. The manipulation of the argument sdcid/keyid1 leads to cross site…

  • CVE-2024-6181LowJun 20, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in LabVantage LIMS 2017. It has been declared as problematic. This vulnerability affects unknown code of the file /labvantage/rc?command=file&file=WEB-CORE/elements/files/filesembedded.jsp&size=32. The manipulation of the argument height/width leads to…

  • CVE-2024-6058LowJun 17, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability classified as problematic has been found in LabVantage LIMS 2017. This affects an unknown part of the file /labvantage/rc?command=page&page=SampleHistoricalList&_iframename=list&__crc=crc_1701669816260. The manipulation of the argument height/width leads to cross…