Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
librenms librenms vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2019-10668
An issue exists in LibreNMS up to and including 1.47. A number of scripts import the Authentication libraries, but do not enforce an actual authentication check. Several of these scripts disclose information or expose functions that are of a sensitive nature and are not expected ...
Librenms Librenms
4.8
CVSSv3
CVE-2022-0772
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms before 22.2.2.
Librenms Librenms
8.8
CVSSv3
CVE-2020-35700
A second-order SQL injection issue in Widgets/TopDevicesController.php (aka the Top Devices dashboard widget) of LibreNMS prior to 21.1.0 allows remote authenticated malicious users to execute arbitrary SQL commands via the sort_order parameter against the /ajax/form/widget-setti...
Librenms Librenms
8.8
CVSSv3
CVE-2018-20678
LibreNMS up to and including 1.47 allows SQL injection via the html/ajax_table.php sort[hostname] parameter, exploitable by authenticated users during a search.
Librenms Librenms
5.4
CVSSv3
CVE-2023-4977
Code Injection in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
6.1
CVSSv3
CVE-2023-4978
Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
5.4
CVSSv3
CVE-2023-4979
Cross-site Scripting (XSS) - Reflected in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
5.4
CVSSv3
CVE-2023-4980
Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
5.4
CVSSv3
CVE-2023-4981
Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
5.4
CVSSv3
CVE-2023-4982
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »