Vulnerabilities in librenms
75 resultsCVE-2023-5060HIGHCross-site Scripting (XSS) - DOM in librenms/librenmsEPSS 0.6%CVE-2022-3231MEDIUMCross-site Scripting (XSS) - Stored in librenms/librenmsEPSS 0.5%CVE-2022-3561MEDIUMCross-site Scripting (XSS) - Generic in librenms/librenmsEPSS 0.5%CVE-2024-47524HIGHLibreNMS has Stored Cross-site Scripting vulnerability in "Device Group" NameEPSS 0.5%CVE-2024-47527HIGHLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device-dependencies.inc.phpEPSS 0.5%CVE-2022-3516MEDIUMCross-site Scripting (XSS) - Stored in librenms/librenmsEPSS 0.5%CVE-2024-52526MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/services.inc.phpEPSS 0.4%CVE-2023-4977HIGHCode Injection in librenms/librenmsEPSS 0.4%CVE-2024-47526LOWLibreNMS has a Self-XSS ('Cross-site Scripting') in librenms/includes/html/modal/alert_template.inc.phpEPSS 0.4%CVE-2024-51496MEDIUMLibreNMS has a Reflected XSS ('Cross-site Scripting') in librenms/includes/html/pages/wireless.inc.phpEPSS 0.4%CVE-2024-49759MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/edituser.inc.phpEPSS 0.4%CVE-2020-36947HIGHLibreNMS 1.46 - MAC Accounting Graph Authenticated SQL InjectionEPSS 0.4%CVE-2025-23201MEDIUMReflected Cross-site Scripting on error alert in librenmsEPSS 0.4%CVE-2024-51495MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/dev-overview-data.inc.phpEPSS 0.4%CVE-2024-51494MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/app/Http/Controllers/Table/EditPortsController.phpEPSS 0.4%CVE-2024-51497MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.phpEPSS 0.4%CVE-2024-50351MEDIUMLibreNMS has a Reflected XSS ('Cross-site Scripting') in librenms/includes/functions.phpEPSS 0.4%CVE-2024-50350MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/app/Http/Controllers/Table/EditPortsController.phpEPSS 0.4%CVE-2024-49764MEDIUMLibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/capture.inc.phpEPSS 0.4%CVE-2024-47528MEDIUMLibreNMS Contains a Stored XSS via File UploadEPSS 0.4%