ID: CVE-2024-45408 CVSS V3.1: HIGH eLabFTW is an open source electronic lab notebook for research labs. An incorrect permission check has been found that could allow an authenticated user to access several kinds of otherwise restricted information. If anonymous... #security#infosec#cve-alert

ID: CVE-2024-25632 CVSS V3.1: HIGH eLabFTW is an open source electronic lab notebook for research labs. In the context of eLabFTW, an administrator is a user account with certain privileges to manage users and content in their assigned team/teams. A user may be an... #security#infosec#cve-alert

Not exactly the same, but the electronic lab notebook eLabFTW implements a trusted timestamping function - which can use blockchain - to verify the date & time of content creation. The fingerprint of real science should look very different to papermill content doc.elabftw.net/faq.html#tru...

ID: CVE-2024-28100 CVSS V3.1: HIGH eLabFTW is an open source electronic lab notebook for research labs. By uploading specially crafted files, a regular user can create a circumstance where a visitor's browser runs arbitrary JavaScript code in the context of the... #security#infosec#cve-alert

📣 News Digest Week 33 & 34! Today with updates from #DAPHNE4NFDI#eLabFTW#NFDI4Cat@nfdi4earth.bsky.socialthefairelephant.com/2024/08/23/n...#FAIRElephantNews#NaturalScience#ResearchData#RDM

News Digest – RDM in Natural Science: Week 33 & 34

After a one week without a News Digest, due to holidays, I am now back with a new one, covering the weeks 33 & 34. The different NFDI consortia seem to use the repository Zenodo more and more, …

ID: CVE-2024-25633 CVSS V3.1: MEDIUM eLabFTW is an open source electronic lab notebook for research labs. In an eLabFTW system, one might disallow user creation except for by system administrators, administrators and trusted services. If administrators are allowed... #security#infosec#cve-alert

Seconding @dpastoors.bsky.socialwww.elabftw.net