Skip to main content

eLabFTW CVE-2026-28511

MEDIUM
Information Exposure (CWE-200)
2026-06-01 GitHub_M
4.3
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jun 01, 2026 - 22:50 vuln.today

DescriptionGitHub Advisory

eLabFTW is an open source electronic lab notebook. Prior to version 5.4.2, in certain cases, an authenticated user performing a numeric reference/search can return results that include resources the requesting user is not authorized to view. The exposed information is limited (only the title). Attempts to access the underlying protected resource content remain blocked by authorization checks. Version 5.4.2 fixes the issue.

Affected Scope

Cross-scope visibility of titles. No confirmed bypass of content-level access controls

Preconditions

An authenticated user account

No special privileges required beyond standard access

Impact

This may enable unauthorized disclosure of sensitive information if confidential data is included in resource titles. Examples could include project names, patient identifiers, or other regulated information embedded in titles.

AnalysisAI

Information disclosure in eLabFTW prior to version 5.4.2 allows authenticated users to enumerate resource titles outside their authorization scope via numeric reference/search queries. Affected deployments in regulated environments - such as clinical labs or research institutions embedding patient identifiers, project names, or regulated data in resource titles - face elevated sensitivity risk despite the limited scope of exposure. Content-level access controls remain intact; only titles leak. No public exploit identified at time of analysis, and CVSS rates this Medium (4.3), consistent with authenticated, low-impact disclosure.

Technical ContextAI

eLabFTW is an open-source electronic lab notebook used in research and clinical settings, identified by CPE cpe:2.3:a:elabftw:elabftw:*:*:*:*:*:*:*:*. The vulnerability resides in the numeric reference/search feature, which fails to enforce authorization boundaries when constructing or returning search result sets - returning resource titles from scopes the requesting user is not permitted to access. The root cause class is CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor): the authorization logic correctly blocks access to resource content but does not apply equivalent filtering to title metadata surfaced during search. This is a partial access control failure - a common pattern where resource-level gates are enforced but metadata gates are overlooked.

RemediationAI

Vendor-released patch: eLabFTW 5.4.2, which fixes the authorization gap in the numeric reference/search result set. Administrators should upgrade to 5.4.2 immediately, following the upgrade documentation referenced in the vendor advisory at https://github.com/elabftw/elabftw/security/advisories/GHSA-wm4r-p2jg-2mj3. If immediate upgrade is not possible, a compensating control is to restrict access to the numeric reference/search feature at the application or network layer to only users with broad read authorization - this reduces the attack surface but may impact legitimate search workflows. Alternatively, auditing resource titles to remove sensitive identifiers reduces the disclosure impact without affecting functionality, though this is a data hygiene measure rather than a security fix.

CVE-2021-41171 HIGH POC
8.8 Oct 22

eLabFTW is an open source electronic lab notebook manager for research teams. Rated high severity (CVSS 8.8), this vulne

CVE-2019-12185 HIGH POC
8.8 May 20

eLabFTW 1.8.5 is vulnerable to arbitrary file uploads via the /app/controllers/EntityController.php component. Rated hig

CVE-2021-43834 CRITICAL
9.8 Dec 16

eLabFTW is an electronic lab notebook manager for research teams. Rated critical severity (CVSS 9.8), this vulnerability

CVE-2024-25632 HIGH
8.8 Oct 01

eLabFTW is an open source electronic lab notebook for research labs. Rated high severity (CVSS 8.8), this vulnerability

CVE-2021-43833 HIGH
8.8 Dec 16

eLabFTW is an electronic lab notebook manager for research teams. Rated high severity (CVSS 8.8), this vulnerability is

CVE-2025-25206 HIGH
8.3 Feb 14

eLabFTW is an open source electronic lab notebook for research labs. Rated high severity (CVSS 8.3), this vulnerability

CVE-2024-52586 HIGH
7.8 Dec 09

eLabFTW is an open source electronic lab notebook for research labs. Rated high severity (CVSS 7.8), this vulnerability

CVE-2022-31007 HIGH
7.2 May 31

eLabFTW is an electronic lab notebook manager for research teams. Rated high severity (CVSS 7.2), this vulnerability is

CVE-2024-45408 MEDIUM
6.5 Oct 01

eLabFTW is an open source electronic lab notebook for research labs. Rated medium severity (CVSS 6.5), this vulnerabilit

CVE-2024-47826 MEDIUM
6.1 Oct 14

eLabFTW is an open source electronic lab notebook for research labs. Rated medium severity (CVSS 6.1), this vulnerabilit

CVE-2026-28510 MEDIUM
5.9 May 05

Multi-factor authentication bypass in eLabFTW through version 5.4.1 allows attackers with valid primary credentials to c

CVE-2024-28100 MEDIUM
5.4 Sep 02

eLabFTW is an open source electronic lab notebook for research labs. Rated medium severity (CVSS 5.4), this vulnerabilit

Share

CVE-2026-28511 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy