librenms/librenms Security Advisories for 22.2.2 (26)
-
[MEDIUM] LibreNMS has Broken Access control on Graphs Feature
PKSA-dy6r-dy8y-9wrb CVE-2023-48294 GHSA-fpq5-4vwm-78x4
Affected version: <23.11.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Cross-site Scripting at Device groups Deletion feature
PKSA-pkpr-46hb-bg9j CVE-2023-48295 GHSA-8phr-637g-pxrg
Affected version: <23.11.0
Reported by:
GitHub -
[MEDIUM] LibreNMS vulnerable to rate limiting bypass on login page
PKSA-z23c-gbcv-4pv2 CVE-2023-46745 GHSA-rq42-58qf-v3qx
Affected version: <23.11.0
Reported by:
GitHub -
[HIGH] SQL injection in librenms/librenms
PKSA-xq48-tmhk-hpm4 CVE-2023-5591 GHSA-mr6h-7x2m-rgmq
Affected version: <23.10.0
Reported by:
GitHub -
[HIGH] Cross site scripting in librenms
PKSA-39bn-qzf7-nrzs CVE-2023-5060 GHSA-2q8c-gqf4-mg3v
Affected version: <23.9.1
Reported by:
GitHub -
[MEDIUM] LibreNMS Cross-site Scripting vulnerability
PKSA-q4db-z2nw-5gfb CVE-2023-4982 GHSA-m6jj-fgmh-3p8r
Affected version: <23.9.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Cross-site Scripting vulnerability
PKSA-5ktt-gqhn-r871 CVE-2023-4981 GHSA-5jjm-qp48-qp86
Affected version: <23.9.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Cross-site Scripting vulnerability
PKSA-q5sk-6374-ytn9 CVE-2023-4980 GHSA-qxrq-376q-p39h
Affected version: <23.9.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Cross-site Scripting vulnerability
PKSA-m977-sq8g-gk7b CVE-2023-4979 GHSA-jp3c-g46v-jg2c
Affected version: <23.9.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Cross-site Scripting vulnerability
PKSA-jqxr-msnr-g9yn CVE-2023-4978 GHSA-qjpw-rg56-jh8v
Affected version: <23.9.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Code Injection vulnerability
PKSA-3jtx-27br-hxkr CVE-2023-4977 GHSA-57m2-mpc7-gwgx
Affected version: <23.9.0
Reported by:
GitHub -
[HIGH] LibreNMS Cross-site Scripting vulnerability
PKSA-vtm2-sr26-cxxn CVE-2023-4347 GHSA-m6pf-cm3f-7876
Affected version: <=23.7.0
Reported by:
GitHub -
[HIGH] Cross-site Scripting in librenms/librenms
PKSA-9dvd-d3qy-91k9 CVE-2022-4068 GHSA-f3hw-3h74-wr98
Affected version: <22.10.0
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting in librenms/librenms
PKSA-6815-p4cm-y4zr CVE-2022-4067 GHSA-qch4-jmf8-xvp7
Affected version: <22.10.0
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting in librenms/librenms
PKSA-cmc4-585k-48f6 CVE-2022-3562 GHSA-5h77-4245-pg5p
Affected version: <22.10.0
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting in librenms/librenms
PKSA-3q9f-zws9-z6zg CVE-2022-3561 GHSA-264w-gw9g-fhgj
Affected version: <22.10.0
Reported by:
GitHub -
[HIGH] Deserialization of Untrusted Data in librenms/librenms
PKSA-x8rk-j1m6-2mnn CVE-2022-3525 GHSA-cv9g-h8mm-xx5h
Affected version: <22.10.0
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting in librenms/librenms
PKSA-p1zh-s5qy-vh14 CVE-2022-3516 GHSA-r4gq-hv2r-mrf5
Affected version: <22.10.0
Reported by:
GitHub -
[CRITICAL] Insufficient Session Expiration in librenms/librenms
PKSA-cc57-b9hw-7bnv CVE-2022-4070 GHSA-x93j-3hh3-6x23
Affected version: <22.10.0
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting in librenms/librenms
PKSA-pprn-tnkh-98r8 CVE-2022-4069 GHSA-p55m-g4m3-qmrp
Affected version: <22.10.0
Reported by:
GitHub -
[MEDIUM] LibreNMS stored Cross-site Scripting via Schedule Maintenance `Title` parameter
PKSA-r9qb-jzwg-tghp CVE-2022-3231 GHSA-3jh2-wmv7-m932
Affected version: <=22.8.0
Reported by:
GitHub -
[MEDIUM] LibreNMS vulnerable to Cross-Site Scripting (XSS)
PKSA-dxfz-p2qs-yvqh CVE-2022-36746 GHSA-325v-g5vx-whxc
Affected version: <22.7.0
Reported by:
GitHub -
[MEDIUM] LibreNMS vulnerable to Cross-Site Scripting (XSS)
PKSA-gw2m-yhx9-19cr CVE-2022-36745 GHSA-5229-94p3-7wwq
Affected version: <22.7.0
Reported by:
GitHub -
[MEDIUM] Cross site scripting in librenms
PKSA-j3gp-gk9d-13dm CVE-2022-29711 GHSA-2gqg-2rg7-gh33
Affected version: <22.4.0
Reported by:
GitHub -
[HIGH] Command injection in librenms
PKSA-67mt-hm2j-y21r CVE-2022-29712 GHSA-23f2-vgr6-fwv7
Affected version: <22.4.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Arbitrary File Read
PKSA-6jtq-3877-1tyc CVE-2017-16759 GHSA-4ccx-wjqp-5fww
Affected version: <2017-08-18
Reported by:
GitHub