The installation process in LibreNMS prior to 2017-08-18 allows remote malicious users to read arbitrary files, related to html/install.php.
librenms librenms