eLabFTW is an open source electronic lab notebook for research labs. This vulnerability allows an attacker to make GET requests on behalf of the server. It is "blind" because the attacker cannot see the result of the request. Issue has been patched in eLabFTW 4.0.0.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2021-06-21T21:15:11

Updated: 2024-08-03T23:25:31.148Z

Reserved: 2021-05-12T00:00:00

Link: CVE-2021-32698

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-06-21T22:15:07.483

Modified: 2021-06-28T20:45:18.300

Link: CVE-2021-32698

cve-icon Redhat

No data.