Search for packages
| purl | pkg:composer/librenms/librenms@1.20 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-13ug-m6cb-hbcc
Aliases: CVE-2022-29712 GHSA-23f2-vgr6-fwv7 |
Command injection in librenms LibreNMS v22.3.0 was discovered to contain multiple command injection vulnerabilities via the service_ip, hostname, and service_param parameters. |
Affected by 64 other vulnerabilities. |
|
VCID-14f2-sfsx-b3gs
Aliases: CVE-2019-10665 GHSA-q5rg-wg7h-73m5 |
LibreNMS Information Disclosure An issue was discovered in LibreNMS through 1.47. The scripts that handle graphing options (`html/includes/graphs/common.inc.php` and `html/includes/graphs/graphs.inc.php`) do not sufficiently validate or encode several fields of user supplied input. Some parameters are filtered with `mysqli_real_escape_string`, which is only useful for preventing SQL injection attacks; other parameters are unfiltered. This allows an attacker to inject RRDtool syntax with newline characters via the `html/graph.php` script. RRDtool syntax is quite versatile and an attacker could leverage this to perform a number of attacks, including disclosing directory structure and filenames, file content, denial of service, or writing arbitrary files. |
Affected by 82 other vulnerabilities. |
|
VCID-1pjk-5a4d-ekce
Aliases: CVE-2020-35700 GHSA-h59f-p56g-g75v |
SQL Injection A second-order SQL injection issue in `Widgets/TopDevicesController.php` (aka the Top Devices dashboard widget) of LibreNMS allows remote authenticated attackers to execute arbitrary SQL commands via the sort_order parameter against the `/ajax/form/widget-settings` endpoint. |
Affected by 74 other vulnerabilities. |
|
VCID-1q9d-aqn7-67ad
Aliases: CVE-2022-0587 GHSA-ppfm-rj6p-38q6 |
Improper Authorization Improper authorization handling was found in librenms. |
Affected by 66 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-2ccw-938t-yyaj
Aliases: CVE-2023-4347 GHSA-m6pf-cm3f-7876 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site Scripting (XSS) - Reflected in GitHub repository librenms/librenms prior to 23.8.0. |
Affected by 54 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-2n4e-3p7a-kyfh
Aliases: CVE-2019-12465 GHSA-878x-85hc-gc4g |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') An issue was discovered in LibreNMS 1.50.1. A SQL injection flaw was identified in the ajax_rulesuggest.php file where the term parameter is used insecurely in a database query for showing columns of a table, as demonstrated by an ajax_rulesuggest.php?debug=1&term= request. |
Affected by 77 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-2t5k-atx8-eycd
Aliases: CVE-2026-26992 GHSA-93fx-g747-695x |
LibreNMS /port-groups name Stored Cross-Site Scripting **/port-groups name Stored Cross-Site Scripting** - HTTP POST - Request-URI(s): "/port-groups" - Vulnerable parameter(s): "name" - Attacker must be authenticated with "admin" privileges. - When a user adds a port group, an HTTP POST request is sent to the Request-URI "/port-groups". The name of the newly created port group is stored in the value of the name parameter. - After the port group is created, the entry is displayed along with some relevant buttons like Edit and Delete. |
Affected by 2 other vulnerabilities. |
|
VCID-2w1a-3ym6-hygb
Aliases: CVE-2024-47524 GHSA-fc38-2254-48g7 |
LibreNMS has Stored Cross-site Scripting vulnerability in "Device Group" Name The application fail to sanitising inputs properly and rendering the code from user input to browser which allow an attacker to execute malicious javascript code. |
Affected by 37 other vulnerabilities. |
|
VCID-2z9m-fwyr-17b3
Aliases: CVE-2024-49759 GHSA-888j-pjqh-fx58 |
Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/edituser.inc.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Manage User Access" page allows authenticated users to inject arbitrary JavaScript through the "bill_name" parameter when creating a new bill. This vulnerability can lead to the execution of malicious code when visiting the "Bill Access" dropdown in the user's "Manage Access" page, potentially compromising user sessions and allowing unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-3b6p-2q4u-kkb5
Aliases: CVE-2022-4067 GHSA-qch4-jmf8-xvp7 |
Cross-site Scripting in librenms/librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-47n6-dbkp-gbb5
Aliases: CVE-2022-0589 GHSA-gj26-g5qf-jrh7 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') A stored Cross-site Scripting (XSS) vulnerability was found in librenms. |
Affected by 71 other vulnerabilities. |
|
VCID-5f5f-pkcz-bfhr
Aliases: CVE-2024-51496 GHSA-28p7-f6h6-3jh3 |
LibreNMS has a Reflected XSS ('Cross-site Scripting') in librenms/includes/html/pages/wireless.inc.php A Reflected Cross-Site Scripting (XSS) vulnerability in the "metric" parameter of the "/wireless" and "/health" endpoints allows attackers to inject arbitrary JavaScript. This vulnerability results in the execution of malicious code when a user accesses the page with a malicious "metric" parameter, potentially compromising their session and allowing unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-5hwq-6gme-c3gh
Aliases: CVE-2024-49754 GHSA-gfwr-xqmj-j27v |
LibreNMS has a stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/api-access.inc.php A Stored Cross-Site Scripting (XSS) vulnerability in the API-Access page allows authenticated users to inject arbitrary JavaScript through the "token" parameter when creating a new API token. This vulnerability can result in the execution of malicious code in the context of other users' sessions, compromising their accounts and enabling unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-5vg7-7y5w-muhw
Aliases: CVE-2025-68614 GHSA-c89f-8g7g-59wj |
Please find POC file here https://trendmicro-my.sharepoint.com/:u:/p/kholoud_altookhy/IQCfcnOE5ykQSb6Fm-HFI872AZ_zeIJxU-3aDk0jh_eX_NE?e=zkN76d ZDI-CAN-28575: LibreNMS Alert Rule API Cross-Site Scripting Vulnerability -- CVSS ----------------------------------------- 4.3: AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L -- ABSTRACT ------------------------------------- Trend Micro's Zero Day Initiative has identified a vulnerability affecting the following products: LibreNMS - LibreNMS -- VULNERABILITY DETAILS ------------------------ * Version tested: 25.10.0 * Installer file: NA * Platform tested: NA --- |
Affected by 10 other vulnerabilities. |
|
VCID-64kz-hnxr-vud5
Aliases: CVE-2022-0576 GHSA-rp34-85x3-3764 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site Scripting (XSS) was found in librenms. |
Affected by 71 other vulnerabilities. Affected by 66 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-6cy6-6ss3-tqaz
Aliases: CVE-2023-48295 GHSA-8phr-637g-pxrg |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. Affected versions are subject to a cross site scripting (XSS) vulnerability in the device group popups. This issue has been addressed in commit `faf66035ea` which has been included in release version 23.11.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. |
Affected by 44 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-76bn-2u1y-kqf2
Aliases: CVE-2022-0575 GHSA-hxmr-5gv9-6p8v |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') A stored Cross-site Scripting (XSS) vulnerability was found in librenms. |
Affected by 66 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-7fbt-znx9-ukaj
Aliases: CVE-2022-3525 GHSA-cv9g-h8mm-xx5h |
Deserialization of Untrusted Data in librenms/librenms Deserialization of Untrusted Data in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-7m7b-578h-bqhj
Aliases: CVE-2024-47527 GHSA-rwwc-2v8q-gc9v |
LibreNMS has Stored Cross-site Scripting vulnerability in "Device Dependencies" feature A Stored Cross-Site Scripting (XSS) vulnerability in the "Device Dependencies" feature allows authenticated users to inject arbitrary JavaScript through the device name ("hostname" parameter). This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions. |
Affected by 37 other vulnerabilities. |
|
VCID-7s6j-vmn5-p7eh
Aliases: GHSA-7549-ggpq-22w8 |
Duplicate Advisory: LibreNMS is Vulnerable to Remote Code Execution by Arbitrary File Write ## Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-pr3g-phhr-h8fh. This link is maintained to preserve external references. ## Original Description LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server. |
Affected by 0 other vulnerabilities. |
|
VCID-7srz-umtt-n7e1
Aliases: CVE-2022-4070 GHSA-x93j-3hh3-6x23 |
Insufficient Session Expiration in librenms/librenms Insufficient Session Expiration in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-8ks5-6azh-67ed
Aliases: CVE-2025-62412 GHSA-6g2v-66ch-6xmh |
LibreNMS alert-rules has a Cross-Site Scripting Vulnerability **Product:** LibreNMS **Vendor:** LibreNMS **Vulnerability Type:** Cross-Site Scripting (XSS) **CVSS Score:** 4.3 (AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L) **Affected Version:** 25.8.0 (latest at time of discovery) **POC File:** [Download POC](https://trendmicro-my.sharepoint.com/:u:/p/kholoud_altookhy/EQYQOiGddUtOtz6739YUFU4B5FkNob_TvKBYEA8P6lSRQw?e=lDOR5W) **Ticket:** ZDI-CAN-28105: LibreNMS Alert Rules Cross-Site Scripting Vulnerability |
Affected by 13 other vulnerabilities. |
|
VCID-8nsn-f1fc-6ucm
Aliases: CVE-2025-54138 GHSA-gq96-8w38-hhj2 |
LibreNMS has Authenticated Remote File Inclusion in ajax_form.php that Allows RCE LibreNMS 25.6.0 contains an architectural vulnerability in the `ajax_form.php` endpoint that permits Remote File Inclusion based on user-controlled POST input. The application directly uses the `type` parameter to dynamically include `.inc.php` files from the trusted path `includes/html/forms/`, without validation or allowlisting: ```php if (file_exists('includes/html/forms/' . $_POST['type'] . '.inc.php')) { include_once 'includes/html/forms/' . $_POST['type'] . '.inc.php'; } ``` This pattern introduces a latent Remote Code Execution (RCE) vector if an attacker can stage a file in this include path — for example, via symlink, development misconfiguration, or chained vulnerabilities. > This is not an arbitrary file upload bug. But it does provide a powerful execution sink for attackers with write access (direct or indirect) to the include directory. |
Affected by 16 other vulnerabilities. |
|
VCID-8rvq-aegt-guh3
Aliases: CVE-2020-15877 GHSA-3c33-3465-fhx2 |
Exposure of Resource to Wrong Sphere An issue was discovered in LibreNMS. It has insufficient access control for normal users in `routes/web.php`. |
Affected by 75 other vulnerabilities. |
|
VCID-98mh-t1va-xqa8
Aliases: CVE-2024-51494 GHSA-7663-37rg-c377 |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/app/Http/Controllers/Table/EditPortsController.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Port Settings" page allows authenticated users to inject arbitrary JavaScript through the "descr" parameter when editing a device's port settings. This vulnerability can lead to the execution of malicious code when the "Port Settings" page is visited, potentially compromising the user's session and allowing unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-99dx-dees-2fg3
Aliases: CVE-2025-65014 GHSA-5mrf-j8v6-f45g |
LibreNMS has Weak Password Policy A **Weak Password Policy** vulnerability was identified in the user management functionality of the _LibreNMS_ application. This vulnerability allows administrators to create accounts with extremely weak and predictable passwords, such as `12345678`. This exposes the platform to brute-force and credential stuffing attacks. --- |
Affected by 10 other vulnerabilities. |
|
VCID-9tu1-x7t3-sbdn
Aliases: CVE-2018-20678 GHSA-4fwh-r866-pvh9 |
SQL Injection LibreNMS allows SQL injection via the `html/ajax_table.php` `sort[hostname]` parameter, exploitable by authenticated users during a search. |
Affected by 1 other vulnerability. Affected by 82 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-af73-74xn-9fap
Aliases: CVE-2023-5591 GHSA-mr6h-7x2m-rgmq |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') SQL Injection in GitHub repository librenms/librenms prior to 23.10.0. |
Affected by 47 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-appm-zs6z-v3b2
Aliases: CVE-2026-26991 GHSA-5pqf-54qp-32wx |
LibreNMS /device-groups name Stored Cross-Site Scripting **/device-groups name Stored Cross-Site Scripting** - HTTP POST - Request-URI(s): "/device-groups" - Vulnerable parameter(s): "name" - Attacker must be authenticated with "admin" privileges. - When a user adds a device group, an HTTP POST request is sent to the Request-URI "/device-groups". The name of the newly created device group is stored in the value of the name parameter. - After the device group is created, the entry is displayed along with some relevant buttons like Rediscover Devices, Edit, and Delete. |
Affected by 2 other vulnerabilities. |
|
VCID-b67g-878z-sygx
Aliases: CVE-2022-3561 GHSA-264w-gw9g-fhgj |
Cross-site Scripting in librenms/librenms Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-bczm-p4wu-efdm
Aliases: CVE-2021-43324 GHSA-46rx-6jg9-4fh8 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') LibreNMS allows XSS via a widget title. |
Affected by 75 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-bfnn-xz3r-sfcv
Aliases: CVE-2025-62365 GHSA-86rg-8hc8-v82p |
LibreNMS is vulnerable to Reflected-XSS in `report_this` function Reflected-XSS in `report_this` function in `librenms/includes/functions.php` |
Affected by 16 other vulnerabilities. |
|
VCID-ca8g-usbx-5ydu
Aliases: CVE-2025-23199 GHSA-27vf-3g4f-6jp7 |
Duplicate This advisory duplicates another. |
Affected by 19 other vulnerabilities. |
|
VCID-cvn6-ggwj-9fcm
Aliases: CVE-2023-46745 GHSA-rq42-58qf-v3qx |
LibreNMS vulnerable to rate limiting bypass on login page LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. In affected versions the login method has no rate limit. An attacker may be able to leverage this vulnerability to gain access to user accounts. This issue has been addressed in version 23.11.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. |
Affected by 44 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-dff6-r5mp-p3d5
Aliases: CVE-2024-47525 GHSA-j2j9-7pr6-xqwv |
LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Rules" feature A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Rules" feature allows authenticated users to inject arbitrary JavaScript through the "Title" field. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions. |
Affected by 37 other vulnerabilities. |
|
VCID-f6gw-kx8g-r3ac
Aliases: CVE-2021-31274 GHSA-2r2w-jrh2-p4gr |
Cross-site Scripting In LibreNMS, a stored XSS vulnerability was identified in the API Access page due to insufficient sanitization of the $api->description variable. As a result, arbitrary Javascript code can get executed. |
Affected by 73 other vulnerabilities. |
|
VCID-f9v9-rmse-cbcg
Aliases: CVE-2024-47528 GHSA-x8gm-j36p-fppf |
LibreNMS vulnerable to Stored Cross-site Scripting via File Upload Stored Cross-Site Scripting (XSS) can archive via Uploading a new Background for a Custom Map. |
Affected by 37 other vulnerabilities. |
|
VCID-fc9k-4dhn-m7du
Aliases: CVE-2024-51092 GHSA-x645-6pf9-xwxw |
LibreNMS has an Authenticated OS Command Injection An authenticated attacker can create dangerous directory names on the system and alter sensitive configuration parameters through the web portal. Those two defects combined then allows to inject arbitrary OS commands inside `shell_exec()` calls, thus achieving arbitrary code execution. With all this, an authenticated attacker can: - Create a malicious Device with shell metacharacters inside its hostname - Force the creation of directory containing shell metacharacters through the PollDevice job - Modify the `snmpget` configuration variable to point to a valid system binary, while also using the directory created in the previous step via a path traversal (i.e: `/path/to/install/dir/rrd/<DEVICE_HOSTNAME>/../../../../../../../bin/ls`) - Trigger a code execution via the `shell_exec()` call contained in the `AboutController.php` script |
Affected by 24 other vulnerabilities. |
|
VCID-gj21-fy13-33h2
Aliases: CVE-2024-47526 GHSA-gcgp-q2jq-fw52 |
LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Templates" feature A Self Cross-Site Scripting (Self-XSS) vulnerability in the "Alert Templates" feature allows users to inject arbitrary JavaScript into the alert template's name. This script executes immediately upon submission but does not persist after a page refresh. |
Affected by 37 other vulnerabilities. |
|
VCID-h5y9-mrn4-q7br
Aliases: CVE-2026-26990 GHSA-79q9-wc6p-cf92 |
LibreNMS has a Time-Based Blind SQL Injection in address-search.inc.php A time-based blind SQL injection vulnerability exists in `address-search.inc.php` via the `address` parameter. When a crafted subnet prefix is supplied, the prefix value is concatenated directly into an SQL query without proper parameter binding, allowing an attacker to manipulate query logic and infer database information through time-based conditional responses. |
Affected by 2 other vulnerabilities. |
|
VCID-hacq-7c9c-qkaz
Aliases: CVE-2024-47523 GHSA-7f84-28qh-9486 |
LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Transports" feature A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Transports" feature allows authenticated users to inject arbitrary JavaScript through the "Details" section (which contains multiple fields depending on which transport is selected at that moment). This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions. |
Affected by 37 other vulnerabilities. |
|
VCID-hj1w-rpxt-4ygp
Aliases: CVE-2025-65013 GHSA-j8cq-7f6p-256x |
LibreNMS vulnerable to Reflected Cross-Site Scripting (XSS) in endpoint `/maps/nodeimage` parameter `Image Name` A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the LibreNMS application at the `/maps/nodeimage` endpoint. The `Image Name` parameter is reflected in the HTTP response without proper output encoding or sanitization, allowing an attacker to craft a URL that, when visited by a victim, causes arbitrary JavaScript execution in the victim’s browser. |
Affected by 10 other vulnerabilities. |
|
VCID-jjwh-716d-73hc
Aliases: CVE-2024-51495 GHSA-p66q-ppwr-q5j8 |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/dev-overview-data.inc.php A Stored Cross-Site Scripting (XSS) vulnerability in the Device Overview page allows authenticated users to inject arbitrary JavaScript through the "overwrite_ip" parameter when editing a device. This vulnerability results in the execution of malicious code when the device overview page is visited, potentially compromising the accounts of other users. |
Affected by 24 other vulnerabilities. |
|
VCID-jwh7-vtxs-aqhr
Aliases: CVE-2024-52526 GHSA-8fh4-942r-jf2g |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/services.inc.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Services" tab of the Device page allows authenticated users to inject arbitrary JavaScript through the "descr" parameter when adding a service to a device. This vulnerability could result in the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and enabling unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-kkqd-nzsw-23cr
Aliases: CVE-2025-65093 GHSA-6pmj-xjxp-p8g9 |
LibreNMS is vulnerable to SQL Injection (Boolean-Based Blind) in hostname parameter in ajax_output.php endpoint A **Boolean-Based Blind SQL Injection** vulnerability was identified in the LibreNMS application at the `/ajax_output.php` endpoint. The `hostname` parameter is interpolated directly into an SQL query without proper sanitization or parameter binding, allowing an attacker to manipulate the query logic and infer data from the database through conditional responses. --- |
Affected by 10 other vulnerabilities. |
|
VCID-kn2w-mmss-s7hu
Aliases: CVE-2022-0772 GHSA-vhm6-gw82-6f8j |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.2.2. |
Affected by 65 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-kw6p-9232-wuc3
Aliases: CVE-2019-10667 GHSA-f4hh-xxqh-wgpq |
Exposure of Sensitive Information to an Unauthorized Actor An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths. |
Affected by 80 other vulnerabilities. |
|
VCID-m1hm-kqrc-3kbj
Aliases: CVE-2022-0580 GHSA-33wf-4crm-2322 |
Improper Access Control Improper access control was found in librenms. |
Affected by 66 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-mchv-4jpx-audc
Aliases: CVE-2026-26987 GHSA-gqx7-99jw-6fpr |
LibreNMS affected by reflected xss via email field reflected xss via email field |
Affected by 2 other vulnerabilities. |
|
VCID-me5y-39aj-fkhe
Aliases: CVE-2024-32479 GHSA-72m9-7c8x-pmmw |
LibreNMS uses Improper Sanitization on Service template name leads to Stored XSS There is improper sanitization on Service template name which is reflecting in delete button onclick event. This value can be modified and crafted as any other javascript code. |
Affected by 41 other vulnerabilities. |
|
VCID-mhf4-mtt1-t3fn
Aliases: CVE-2023-5060 GHSA-2q8c-gqf4-mg3v |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site Scripting (XSS) - DOM in GitHub repository librenms/librenms prior to 23.9.1. |
Affected by 48 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-n5u3-c21p-ukas
Aliases: CVE-2023-4980 GHSA-qxrq-376q-p39h |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in librenms/librenms. |
Affected by 49 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-ncgs-c7tb-gbfg
Aliases: CVE-2024-50355 GHSA-4m5r-w2rq-q54q |
LibreNMS has a Persistent XSS from Insecure Input Sanitization Affects Multiple Endpoints The application fail to sanitising inputs properly and rendering the code from user input to browser which allow an attacker to execute malicious javascript code. |
Affected by 24 other vulnerabilities. |
|
VCID-nyn8-7mkk-zbb3
Aliases: CVE-2023-4978 GHSA-qjpw-rg56-jh8v |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in librenms/librenms. |
Affected by 49 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-pbmr-z5cb-3udc
Aliases: CVE-2018-18478 GHSA-9m82-f3wx-p625 |
Cross-site Scripting Persistent Cross-Site Scripting (XSS) issues in LibreNMS allow remote attackers to inject arbitrary web script or HTML via the `dashboard_name` parameter in the `/ajax_form.php` resource, related to `html/includes/forms/add-dashboard.inc.php`, `html/includes/forms/delete-dashboard.inc.php`, and `html/includes/forms/edit-dashboard.inc.php.` |
Affected by 84 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-pksv-nv1a-sqev
Aliases: CVE-2024-50351 GHSA-v7w9-63xh-6r3w |
LibreNMS has a Reflected XSS ('Cross-site Scripting') in librenms/includes/functions.php A Reflected Cross-Site Scripting (XSS) vulnerability in the "section" parameter of the "logs" tab of a device allows attackers to inject arbitrary JavaScript. This vulnerability results in the execution of malicious code when a user accesses the page with a malicious "section" parameter, potentially compromising their session and enabling unauthorized actions. The issue arises from a lack of sanitization in the "report_this()" function. |
Affected by 24 other vulnerabilities. |
|
VCID-q9tz-7qfm-hfa3
Aliases: CVE-2020-36947 GHSA-qp2j-v5jg-hg68 |
LibreNMS contains an authenticated SQL Injection vulnerability LibreNMS 1.46 contains an authenticated SQL Injection vulnerability in the MAC accounting graph endpoint that allows remote attackers to extract database information. Attackers can exploit the vulnerability by manipulating the 'sort' parameter with crafted SQL Injection techniques to retrieve sensitive database contents through time-based blind SQL Injection. |
Affected by 83 other vulnerabilities. |
|
VCID-qhpe-7ws8-kqb7
Aliases: CVE-2024-50350 GHSA-xh4g-c9p6-5jxg |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/app/Http/Controllers/Table/EditPortsController.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Port Settings" page allows authenticated users to inject arbitrary JavaScript through the "name" parameter when creating a new Port Group. This vulnerability results in the execution of malicious code when the "Port Settings" page is visited after the affected Port Group is added to a device, potentially compromising user sessions and allowing unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-qqnn-43db-guek
Aliases: CVE-2022-4068 GHSA-f3hw-3h74-wr98 |
Cross-site Scripting in librenms/librenms A user is able to enable their own account if it was disabled by an admin while the user still holds a valid session. Moreover, the username is not properly sanitized in the admin user overview. This enables an XSS attack that enables an attacker with a low privilege user to execute arbitrary JavaScript in the context of an admin's account. |
Affected by 55 other vulnerabilities. |
|
VCID-sa1y-ej2a-fba9
Aliases: CVE-2023-4977 GHSA-57m2-mpc7-gwgx |
LibreNMS Code Injection vulnerability Code Injection in GitHub repository librenms/librenms prior to 23.9.0. |
Affected by 49 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-skzd-ee5z-43f3
Aliases: CVE-2019-10668 GHSA-277v-gwfr-hmpj |
Missing Authentication for Critical Function An issue was discovered in LibreNMS through 1.47. A number of scripts import the Authentication libraries, but do not enforce an actual authentication check. Several of these scripts disclose information or expose functions that are of a sensitive nature and are not expected to be publicly accessible. |
Affected by 80 other vulnerabilities. |
|
VCID-t5mk-a8n2-rkcg
Aliases: CVE-2026-26989 GHSA-6xmx-xr9p-58p7 |
LibreNMS has a Stored XSS in Alert Rule A stored Cross-Site Scripting (XSS) vulnerability exists in LibreNMS (<= 25.12.0) in the creation of Alert Rules. This allows a user with the admin role to inject malicious JavaScript, which will be executed when the alert rules page is viewed. |
Affected by 2 other vulnerabilities. |
|
VCID-teun-wgsn-3kgj
Aliases: CVE-2019-12464 GHSA-r336-jxfr-4c3c |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') An issue was discovered in LibreNMS 1.50.1. An authenticated user can perform a directory traversal attack against the /pdf.php file with a partial filename in the report parameter, to cause local file inclusion resulting in code execution. |
Affected by 77 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-u1km-tzd2-5bhq
Aliases: CVE-2023-4982 GHSA-m6jj-fgmh-3p8r |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in librenms/librenms. |
Affected by 49 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-us6w-wwkm-dqc5
Aliases: CVE-2023-4979 GHSA-jp3c-g46v-jg2c |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in librenms/librenms. |
Affected by 49 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-uuwy-rk5r-tkc7
Aliases: CVE-2024-49758 GHSA-c86q-rj37-8f85 |
LibreNMS has a stored XSS in ExamplePlugin with Device's Notes The application fail to sanitising inputs properly and rendering the code from user input to browser which allow an attacker to execute malicious javascript code. |
Affected by 24 other vulnerabilities. |
|
VCID-ux81-kyy9-bkaz
Aliases: CVE-2024-49764 GHSA-rmr4-x6c9-jc68 |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/capture.inc.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Capture Debug Information" page allows authenticated users to inject arbitrary JavaScript through the "hostname" parameter when creating a new device. This vulnerability results in the execution of malicious code when the "Capture Debug Information" page is visited, redirecting the user and sending non-httponly cookies to an attacker-controlled domain. |
Affected by 24 other vulnerabilities. |
|
VCID-uzy1-yh5d-dqbt
Aliases: CVE-2025-55296 GHSA-vxq6-8cwm-wj99 |
LibreNMS allows stored XSS in Alert Template name field A stored Cross-Site Scripting (XSS) vulnerability exists in LibreNMS (<= 25.6.0) in the Alert Template creation feature. This allows a user with the **admin role** to inject malicious JavaScript, which will be executed when the template is rendered, potentially compromising other admin accounts. --- |
Affected by 15 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-v2sw-u952-7qfz
Aliases: CVE-2025-47931 GHSA-hxw5-9cc5-cmw5 |
LibreNMS stored Cross-site Scripting vulnerability in poller group name ### LibreNMS v25.4.0 suffers from Stored Cross-Site Scripting (XSS) Vulnerability in the 'group name' parameter of the 'http://localhost/poller/groups' form. This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. ## ---------------------------------POC----------------------------- Before Setting: Enable 'distributed_poller' in http://localhost/settings/poller/distributed 1. Attacker creates a new poller group and injects the payload in the 'group name' parameter ``` payload: <script>alert('XSS')</script> ``` 2. Victim navigates to the 'http://localhost/addhost' to add a new host 3. The payload is executed code sink: https://github.com/librenms/librenms/blob/25.4.0/includes/html/pages/addhost.inc.php#L284 |
Affected by 18 other vulnerabilities. |
|
VCID-v3wv-6q6b-fqa3
Aliases: CVE-2024-51497 GHSA-gv4m-f6fx-859x |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Custom OID" tab of a device allows authenticated users to inject arbitrary JavaScript through the "unit" parameter when creating a new OID. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, compromising their accounts and enabling unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-v45u-fzky-gkax
Aliases: CVE-2020-15873 GHSA-g5r6-vrmx-9gwj |
In LibreNMS, an authenticated attacker can achieve SQL Injection via the `customoid.inc.php` `device_id` POST parameter to `ajax_form.php`. |
Affected by 75 other vulnerabilities. |
|
VCID-vepx-waum-1bfc
Aliases: CVE-2024-50352 GHSA-qr8f-5qqg-j3wg |
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/overview/services.inc.php A Stored Cross-Site Scripting (XSS) vulnerability in the "Services" section of the Device Overview page allows authenticated users to inject arbitrary JavaScript through the "name" parameter when adding a service to a device. This vulnerability could result in the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and enabling unauthorized actions. |
Affected by 24 other vulnerabilities. |
|
VCID-w5dm-5pyj-cfef
Aliases: CVE-2022-3516 GHSA-r4gq-hv2r-mrf5 |
Cross-site Scripting in librenms/librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-w9mu-bbkx-sbeq
Aliases: CVE-2023-4981 GHSA-5jjm-qp48-qp86 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in librenms/librenms. |
Affected by 49 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-whxh-v47a-8yhh
Aliases: CVE-2024-32480 GHSA-jh57-j3vq-h438 |
LibreNMS vulnerable to a Time-Based Blind SQL injection leads to database extraction Get a valid API token, make sure you can access api functions, then replace string on my PoC code, Test on offical OVA image, it's a old version 23.9.1, but this vulerable is also exists on latest version 24.2.0 |
Affected by 41 other vulnerabilities. |
|
VCID-wkt4-vdr8-mkgk
Aliases: CVE-2022-0588 GHSA-254q-rqmw-vx45 |
Missing Authorization in librenms/librenms Missing Authorization in Packagist librenms/librenms prior to 22.2.0. |
Affected by 66 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-x1aq-5a19-yye7
Aliases: CVE-2022-4069 GHSA-p55m-g4m3-qmrp |
Cross-site Scripting in librenms/librenms Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-y1v6-t7tp-mkbz
Aliases: CVE-2019-10671 GHSA-g9xh-3w5g-229r |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') An issue was discovered in LibreNMS through 1.47. It does not parameterize all user supplied input within database queries, resulting in SQL injection. An authenticated attacker can subvert these database queries to extract or manipulate data, as demonstrated by the graph.php sort parameter. |
Affected by 80 other vulnerabilities. |
|
VCID-y3qu-d719-jff6
Aliases: CVE-2023-48294 GHSA-fpq5-4vwm-78x4 |
LibreNMS has Broken Access control on Graphs Feature LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. In affected versions of LibreNMS when a user accesses their device dashboard, one request is sent to `graph.php` to access graphs generated on the particular Device. This request can be accessed by a low privilege user and they can enumerate devices on librenms with their id or hostname. Leveraging this vulnerability a low privilege user can see all devices registered by admin users. This vulnerability has been addressed in commit `489978a923` which has been included in release version 23.11.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. |
Affected by 44 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-y5mq-m57f-b3bx
Aliases: CVE-2026-26988 GHSA-h3rv-q4rq-pqcv |
LibreNMS: SQL Injection in ajax_table.php spreads through a covert data stream. *SQL Injection in IPv6 Address Search functionality via `address` parameter** A SQL injection vulnerability exists in the `ajax_table.php` endpoint. The application fails to properly sanitize or parameterize user input when processing IPv6 address searches. Specifically, the `address` parameter is split into an address and a prefix, and the prefix portion is directly concatenated into the SQL query string without validation. This allows an attacker to inject arbitrary SQL commands, potentially leading to unauthorized data access or database manipulation. |
Affected by 2 other vulnerabilities. |
|
VCID-y6jm-2987-9uh2
Aliases: CVE-2022-3562 GHSA-5h77-4245-pg5p |
Cross-site Scripting in librenms/librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 55 other vulnerabilities. |
|
VCID-yhmt-yukb-kuge
Aliases: CVE-2025-23201 GHSA-g84x-g96g-rcjc |
Duplicate This advisory duplicates another. |
Affected by 19 other vulnerabilities. |
|
VCID-ystr-9q5e-17ak
Aliases: CVE-2017-16759 GHSA-4ccx-wjqp-5fww |
LibreNMS Arbitrary File Read The installation process in LibreNMS before 2017-08-18 allows remote attackers to read arbitrary files, related to html/install.php. |
Affected by 85 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-ywp5-cwm9-afb5
Aliases: CVE-2024-32461 GHSA-cwx6-cx7x-4q34 |
LibreNMS vulnerable to SQL injection time-based leads to database extraction SQL injection vulnerability in POST /search/search=packages in LibreNMS 24.3.0 allows a user with global read privileges to execute SQL commands via the package parameter. |
Affected by 41 other vulnerabilities. |
|
VCID-z744-37t6-pud6
Aliases: CVE-2025-62411 GHSA-frc6-pwgr-c28w |
LibreNMS has a Stored XSS vulnerability in its Alert Transport name field LibreNMS <= 25.8.0 contains a **Stored Cross-Site Scripting (XSS)** vulnerability in the Alert Transports management functionality. When an administrator creates a new Alert Transport, the value of the `Transport name` field is stored and later rendered in the **Transports** column of the **Alert Rules** page without proper input validation or output encoding. This leads to arbitrary JavaScript execution in the admin’s browser. |
Affected by 13 other vulnerabilities. |
|
VCID-zech-eg55-gbcn
Aliases: CVE-2022-3231 GHSA-3jh2-wmv7-m932 |
LibreNMS stored Cross-site Scripting via Schedule Maintenance `Title` parameter LibreNMS versions 22.8.0 and prior allow attackers to execute arbitrary JavaScript code via the Schedule Maintenance `Title` parameter. A patch is available and anticipated to be part of version 22.9.0. |
Affected by 63 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||