CVE-2026-28511
Analyzed Analyzed - Analysis Complete
eLabFTW Title Exposure via Numeric Search

Publication date: 2026-06-01

Last updated on: 2026-06-03

Assigner: GitHub, Inc.

Description
eLabFTW is an open source electronic lab notebook. Prior to version 5.4.2, in certain cases, an authenticated user performing a numeric reference/search can return results that include resources the requesting user is not authorized to view. The exposed information is limited (only the title). Attempts to access the underlying protected resource content remain blocked by authorization checks. Version 5.4.2 fixes the issue. # Affected Scope Cross-scope visibility of titles. No confirmed bypass of content-level access controls # Preconditions An authenticated user account No special privileges required beyond standard access # Impact This may enable unauthorized disclosure of sensitive information if confidential data is included in resource titles. Examples could include project names, patient identifiers, or other regulated information embedded in titles.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-01
Last Modified
2026-06-03
Generated
2026-06-22
AI Q&A
2026-06-02
EPSS Evaluated
2026-06-21
NVD
CVE-2026-28511
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
elabftw elabftw to 5.4.2 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in eLabFTW, an open source electronic lab notebook, in versions prior to 5.4.2. It allows an authenticated user performing a numeric reference or search to receive results that include titles of resources they are not authorized to view. However, the actual content of these protected resources remains inaccessible due to authorization checks.

Impact Analysis

The vulnerability can lead to unauthorized disclosure of sensitive information if confidential data is included in the titles of resources. For example, project names, patient identifiers, or other regulated information embedded in titles could be exposed to users without proper authorization.

Compliance Impact

This vulnerability may impact compliance with standards and regulations such as GDPR and HIPAA because it can result in unauthorized disclosure of sensitive or regulated information contained in resource titles. Even though the full content remains protected, exposure of confidential identifiers or personal data in titles could violate data protection and privacy requirements.

Mitigation Strategies

The immediate step to mitigate this vulnerability is to upgrade eLabFTW to version 5.4.2 or later, where the issue has been fixed.

Detection Guidance

Detection of this vulnerability involves verifying if an authenticated user can perform numeric reference or search queries that return titles of resources outside their authorized scope.

One approach is to log in with a standard user account and execute numeric search queries or reference lookups within the eLabFTW application to see if titles of unauthorized resources are returned.

Since the vulnerability is related to the application behavior rather than a network signature, detection commands would be application-specific HTTP requests simulating numeric searches.

For example, using curl to perform an authenticated numeric search request might look like this:

  • curl -i -H "Cookie: session=YOUR_SESSION_COOKIE" "https://your-elabftw-instance/api/search?query=12345"

Replace YOUR_SESSION_COOKIE with a valid session cookie for an authenticated user and adjust the query parameter to numeric values. If the response includes titles of resources not authorized for that user, the vulnerability is present.

Additionally, reviewing application logs for unusual numeric search queries returning unexpected titles may help detect exploitation attempts.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-28511. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart