Search for packages
| purl | pkg:composer/librenms/librenms@1.31.01 |
| Next non-vulnerable version | 1.44.0 |
| Latest non-vulnerable version | 201609.0.0 |
| Risk |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1bhu-qkzp-tqas
Aliases: CVE-2022-0589 GHSA-gj26-g5qf-jrh7 |
Cross-site Scripting in librenms |
Affected by 16 other vulnerabilities. |
|
VCID-2dax-4ghn-mffp
Aliases: CVE-2020-15877 GHSA-3c33-3465-fhx2 |
Affected by 20 other vulnerabilities. |
|
|
VCID-3qv3-74t6-6fhs
Aliases: CVE-2020-35700 GHSA-h59f-p56g-g75v |
Affected by 19 other vulnerabilities. |
|
|
VCID-5qc1-g4x7-n3fp
Aliases: CVE-2019-10668 GHSA-277v-gwfr-hmpj |
Missing Authentication for Critical Function in LibreNMS |
Affected by 25 other vulnerabilities. |
|
VCID-61va-qddt-rbf2
Aliases: CVE-2018-20678 GHSA-4fwh-r866-pvh9 |
Affected by 27 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
|
VCID-656h-mks2-6yaw
Aliases: CVE-2022-3525 GHSA-cv9g-h8mm-xx5h |
Deserialization of Untrusted Data in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-8xsz-9mtq-w7ct
Aliases: CVE-2022-0588 GHSA-254q-rqmw-vx45 |
Missing Authorization in librenms/librenms |
Affected by 11 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-91gw-qj5p-y3ed
Aliases: CVE-2022-4068 GHSA-f3hw-3h74-wr98 |
A user is able to enable their own account if it was disabled by an admin while the user still holds a valid session. Moreover, the username is not properly sanitized in the admin user overview. This enables an XSS attack that enables an attacker with a low privilege user to execute arbitrary JavaScript in the context of an admin's account. |
Affected by 0 other vulnerabilities. |
|
VCID-92gm-nsf8-d7dt
Aliases: CVE-2021-31274 GHSA-2r2w-jrh2-p4gr |
Affected by 18 other vulnerabilities. |
|
|
VCID-98wd-pvht-nqfu
Aliases: CVE-2022-0772 GHSA-vhm6-gw82-6f8j |
Cross site scripting in LibreNMS |
Affected by 10 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-9zy9-ue2n-87b4
Aliases: CVE-2022-4069 GHSA-p55m-g4m3-qmrp |
Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-bgm3-4nkb-c3bs
Aliases: CVE-2022-29712 GHSA-23f2-vgr6-fwv7 |
Command injection in librenms |
Affected by 9 other vulnerabilities. |
|
VCID-cewc-v19g-yqf6
Aliases: CVE-2019-10665 GHSA-q5rg-wg7h-73m5 |
Affected by 27 other vulnerabilities. |
|
|
VCID-hhhz-1bd6-3bfy
Aliases: CVE-2022-3516 GHSA-r4gq-hv2r-mrf5 |
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-j176-ekvg-3ufv
Aliases: CVE-2020-15873 GHSA-g5r6-vrmx-9gwj |
Affected by 20 other vulnerabilities. |
|
|
VCID-ja3k-pqg6-cuct
Aliases: CVE-2021-43324 GHSA-46rx-6jg9-4fh8 |
Affected by 20 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
|
VCID-k3tp-p2ay-5bf3
Aliases: CVE-2022-0575 GHSA-hxmr-5gv9-6p8v |
Cross-site Scripting in librenms |
Affected by 11 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-kj8w-8fft-m3em
Aliases: CVE-2019-12465 GHSA-878x-85hc-gc4g |
SQL Injection in LibreNMS |
Affected by 22 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-p7fj-s4ra-rqfe
Aliases: CVE-2022-3562 GHSA-5h77-4245-pg5p |
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-qc4w-r2jh-a7hx
Aliases: CVE-2019-10671 GHSA-g9xh-3w5g-229r |
SQL Injection in LibreNMS |
Affected by 25 other vulnerabilities. |
|
VCID-s58c-1ss7-jbh1
Aliases: CVE-2022-3231 GHSA-3jh2-wmv7-m932 |
LibreNMS stored Cross-site Scripting via Schedule Maintenance `Title` parameter |
Affected by 8 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-sm1m-7ca9-vfb4
Aliases: CVE-2022-0587 GHSA-ppfm-rj6p-38q6 |
Improper Authorization in librenms |
Affected by 11 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-sp7z-xykf-e7ce
Aliases: CVE-2019-10667 GHSA-f4hh-xxqh-wgpq |
Exposure of Sensitive Information to an Unauthorized Actor in LibreNMS |
Affected by 25 other vulnerabilities. |
|
VCID-tj46-drf4-q7hy
Aliases: CVE-2022-4070 GHSA-x93j-3hh3-6x23 |
Insufficient Session Expiration in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-upyd-sq4n-hycq
Aliases: CVE-2022-4067 GHSA-qch4-jmf8-xvp7 |
Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-vhry-3hqm-bbaz
Aliases: CVE-2022-0580 GHSA-33wf-4crm-2322 |
Improper Access Control in librenms |
Affected by 11 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-xf97-1u9d-mbhx
Aliases: CVE-2022-3561 GHSA-264w-gw9g-fhgj |
Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0. |
Affected by 0 other vulnerabilities. |
|
VCID-y1p7-5z78-xkc2
Aliases: CVE-2019-12464 GHSA-r336-jxfr-4c3c |
Path Traversal in LibreNMS |
Affected by 22 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-y22w-mxrw-sbh1
Aliases: CVE-2022-0576 GHSA-rp34-85x3-3764 |
Cross-site Scripting in librenms |
Affected by 16 other vulnerabilities. Affected by 11 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zbz2-hwqc-6ye4
Aliases: CVE-2018-18478 GHSA-9m82-f3wx-p625 |
Affected by 29 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||