librenms/librenms Security Advisories for 24.10.0 (6)
-
[MEDIUM] Librenms has a reflected XSS on error alert
PKSA-wm61-7jpt-8qtq CVE-2025-23201 GHSA-g84x-g96g-rcjc
Affected version: <=24.10.1
Reported by:
GitHub -
[MEDIUM] LibreNMS Misc Section Stored Cross-site Scripting vulnerability
PKSA-j79c-gnyg-4dg2 CVE-2025-23200 GHSA-c66p-64fj-jmc2
Affected version: >=23.9.0,<24.10.1
Reported by:
GitHub -
[MEDIUM] LibreNMS Ports Stored Cross-site Scripting vulnerability
PKSA-6hkp-rngj-sfhp CVE-2025-23199 GHSA-27vf-3g4f-6jp7
Affected version: <24.10.1
Reported by:
GitHub -
[MEDIUM] LibreNMS Display Name Stored Cross-site Scripting vulnerability
PKSA-219w-grmd-yvrn CVE-2025-23198 GHSA-pm8j-3v64-92cq
Affected version: >=24.9.0,<24.10.1
Reported by:
GitHub -
[MEDIUM] LibreNMS stored cross-site scripting (XSS) vulnerability in the Device Settings section
PKSA-yg9q-z1cc-swz5 CVE-2024-53457 GHSA-6c5q-fg3g-qhhv
Affected version: >=24.9.0,<24.11.0
Reported by:
GitHub -
[MEDIUM] LibreNMS Arbitrary File Read
PKSA-6jtq-3877-1tyc CVE-2017-16759 GHSA-4ccx-wjqp-5fww
Affected version: <2017-08-18
Reported by:
GitHub