CVE-2020-7959

LabVantage LIMS 8.3 does not properly maintain the confidentiality of database names. For example, the web application exposes the database name. An attacker might be able to enumerate database names by providing his own database name in a request, because the response will return an 'Unrecognize...

EUVD-2020-28879

Malware in sbrugna...

EUVD-2024-47474

Malicious code in bioql PyPI...

EUVD-2024-47321

Malicious code in bioql PyPI...

EUVD-2025-12205

Malicious code in bioql PyPI...

EUVD-2024-47216

Malicious code in bioql PyPI...

EUVD-2024-47475

Malicious code in bioql PyPI...

EUVD-2024-47320

Malicious code in bioql PyPI...

EUVD-2024-47476

Malicious code in bioql PyPI...

EUVD-2024-46922

Malicious code in bioql PyPI...

EUVD-2024-47477

Malicious code in bioql PyPI...

CVE-2024-6368

A vulnerability was found in LabVantage LIMS 2017. It has been rated as problematic. This issue affects some unknown processing of the file /labvantage/rc?command=page of the component POST Request Handler. The manipulation of the argument param1 leads to cross site scripting. The attack may be...

CVE-2024-6367

A vulnerability was found in LabVantage LIMS 2017. It has been declared as problematic. This vulnerability affects unknown code of the file /labvantage/rc?command=file=WEB-CORE/elements/files/filesembedded.jsp of the component POST Request Handler. The manipulation of the argument...

CVE-2024-6370

A vulnerability classified as problematic was found in LabVantage LIMS 2017. Affected by this vulnerability is an unknown functionality of the file /labvantage/rc?command=file=WEB-OPAL/pagetypes/bulletins/sendbulletin.jsp of the component POST Request Handler. The manipulation of the argument...

CVE-2024-6369

A vulnerability classified as problematic has been found in LabVantage LIMS 2017. Affected is an unknown function of the file /labvantage/rc?command=page=LVReagentLot of the component POST Request Handler. The manipulation of the argument mode leads to cross site scripting. It is possible to laun...

CVE-2024-6181

A vulnerability was found in LabVantage LIMS 2017. It has been declared as problematic. This vulnerability affects unknown code of the file /labvantage/rc?command=file=WEB-CORE/elements/files/filesembedded.jsp=32. The manipulation of the argument height/width leads to cross site scripting. The...

CVE-2024-6182

A vulnerability was found in LabVantage LIMS 2017. It has been rated as problematic. This issue affects some unknown processing of the file /labvantage/rc?command=page=LVViewSampleSpec=Y&sdialog=Y. The manipulation of the argument sdcid/keyid1 leads to cross site scripting. The attack may be...

CVE-2024-6058

A vulnerability classified as problematic has been found in LabVantage LIMS 2017. This affects an unknown part of the file /labvantage/rc?command=page=SampleHistoricalList&iframename=list&crc=crc1701669816260. The manipulation of the argument height/width leads to cross site scripting. It is...

CVE-2024-5771

A vulnerability classified as critical was found in LabVantage LIMS 2017. This vulnerability affects unknown code of the file /labvantage/rc?command=page=SampleList&iframename=list of the component POST Request Handler. The manipulation of the argument param1 leads to sql injection. The attack ca...

CVE-2025-43951

LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter...