LabKey Vulnerabilities Threaten Medical Research Data

[maruf.swe]

LabKey Server version 18.3.0-61806.763, released on January 16, patches all three issues, so users should update as soon as possible.

A trio of vulnerabilities in a popular open source medical data collaboration tool leaves important healthcare research data and potentially subject information open to multiple cross site scripting (XSS) attacks. The flaws are serious as they allow an attacker to retrieve user credentials once a user clicks a malicious link.

For More Details : https://threatpost.com/labkey-vulnerabilities-medical-research/141200/