CVE-2026-28510 | eLabFTW up to 5.4.1 Multi-Factor Authentication authentication bypass by assumed-immutable data (GHSA-x5wv-c9q4-fj65)

A vulnerability, which was classified as problematic, was found in eLabFTW up to 5.4.1. This vulnerability affects unknown code of the component Multi-Factor Authentication. The manipulation results in authentication bypass by assumed-immutable data.

This vulnerability was named CVE-2026-28510. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More