Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
librenms vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2022-0576
Cross-site Scripting (XSS) - Generic in Packagist librenms/librenms before 22.1.0.
Librenms Librenms
6.5
CVSSv3
CVE-2022-0588
Missing Authorization in Packagist librenms/librenms before 22.2.0.
Librenms Librenms
6.1
CVSSv3
CVE-2021-43324
LibreNMS up to and including 21.10.2 allows XSS via a widget title.
Librenms Librenms
1 Github repository
5.4
CVSSv3
CVE-2023-4977
Code Injection in GitHub repository librenms/librenms before 23.9.0.
Librenms Librenms
8.8
CVSSv3
CVE-2020-15877
An issue exists in LibreNMS prior to 1.65.1. It has insufficient access control for normal users because of "'guard' => 'admin'" instead of "'middleware' => ['can:admin']" in routes/web.php.
Librenms Librenms
6.1
CVSSv3
CVE-2022-3561
Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms before 22.10.0.
Librenms Librenms
5.4
CVSSv3
CVE-2022-3562
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms before 22.10.0.
Librenms Librenms
6.5
CVSSv3
CVE-2020-15873
In LibreNMS prior to 1.65.1, an authenticated attacker can achieve SQL Injection via the customoid.inc.php device_id POST parameter to ajax_form.php.
Librenms Librenms
1 Github repository
8.8
CVSSv3
CVE-2022-0580
Incorrect Authorization in Packagist librenms/librenms before 22.2.0.
Librenms Librenms
4.8
CVSSv3
CVE-2022-0772
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms before 22.2.2.
Librenms Librenms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »