CVE-2019-3912

CVE-2019-3912

Vendor Tenable
Product LabKey Server Community Edition
Weakness CWE-601 · Open redirect
Published January 30, 2019
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

An open redirect vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 via the /__r1/ returnURL parameter allows an unauthenticated remote attacker to redirect users to arbitrary web sites.

Key dates

02Disclosure timeline

January 30, 2019 CVE published
September 17, 2024 Record updated